Ori Eisen, Founder and CEO, Trusona and William Dixon, Head of Operations, Centre for Cybersecurity, World Economic Forum have an opinion piece that had me wondering if this was an April Fool’s joke. It doesn’t seem to be. Here are the bullet points: Cybercriminals are exploiting COVID-19 to launch cyberattacks. Passwords are one of the…
Category: Commentaries and Analyses
The UK Cabinet is meeting on Zoom… here’s the meeting ID
Yesterday, Graham Cluley wrote: UK Prime Minister Boris Johnson announced on Twitter this afternoon that he was chairing the first ever digital Cabinet, while he self-isolated himself at Downing Street after revealing he was suffering “mild symptoms” of Coronavirus. Johnson included in the tweet a screenshot of his desktop, showing there were 35 participants on the Zoom…
REvil Ransomware-as-a-Service – An analysis of a ransomware affiliate operation
From Intel471’s Malware Intelligence Team: REvil aka Sodinokibi, Sodin is a ransomware family operated as a ransomware-as-a-service (RaaS). Deployments of REvil first were observed in April 2019, where attackers leveraged a vulnerability in Oracle WebLogic servers tracked as CVE-2019-2725. REvil is highly configurable and allows operators to customize the way it behaves on the infected…
Kwampirs Malware Employed in Ongoing Cyber Supply Chain Campaign Targeting Global Industries, including Healthcare Sector
The summary from Private Industry Notification #20200330 by the FBI, issued March 30: Since at least 2016, the FBI has observed an Advanced Persistent Threat (APT) actor conduct a global network exploitation campaign using the Kwampirs Remote Access Trojan (RAT) and is providing additional, non-technical information in an effort to highlight key objectives of the…
Houseparty app offers $1m reward to unmask entity behind hacking smear campaign
Catalin Cimpanu reports: Houseparty, a video conferencing desktop and mobile application, said it would pay a $1 million bounty to anyone who could unmask the entity behind what the company described as “a paid commercial smear campaign.” The company’s apparent anger comes after Houseparty has been at the center of media reports published yesterday by…
Secret Russian IoT Botnet Exposed In FSB Contractor Breach
Daniel Golightly reports: Russian hacking group Digital Revolution has discovered the existence of a secret FSB program dubbed the “Fronton Program” that reportedly points to the creation of an IoT botnet. Reported by SC Media, the hackers breached subcontractor ODT (Oday) LLC. ODT was working with frequent Russian Ministry of Internal Affairs contractor InformInvestGroup CJSC. The…