Seen on RedSense.com: Since early 2022, leading security industry experts have made broad estimations that ‘ransomware is on the decline’, but did they properly contextualize their data and findings? Given destabilization from the Russia-Ukraine conflict and tightening U.S. and EU law enforcement activities, ‘ransomware is on the decline’ proponents underestimate their adversaries’ motivations, resiliency, and…
Category: Of Note
LEAK: European Commission to introduce cyber requirements for Internet of Things products
Luca Bertuzzi reports: The proposal for a Cyber Resilience Act that will be presented next week will mandate baseline cybersecurity standards for all connected devices and stricter conformity assessment procedures for critical products, according to a draft seen by EURACTIV. The proposal is trying to address the widespread vulnerabilities in the booming Internet of Things (IoT)…
RESOURCE: Storing Passwords in your Browser Can Ruin Your Life (But Will Make Criminals VERY Happy!)
[The following was originally posted at PogoWasRight.org] As the world reels from daily cyber attacks, it’s more important than ever to understand how our online behavior can negatively impact our family and work. From storing usernames and passwords in the browser to using the same device for work, personal financial matters, and playing online games,…
WT1SHOP and WT1STORE Websites Selling Stolen Login Credentials and Other Personally Identifying Information is Seized and Its Operator Faces Federal Charges for Conspiracy and Trafficking in Unauthorized Access Devices
Greenbelt, Maryland – A website operating as a marketplace for over 5.85 million records of personally identifying information (PII) was seized today by Portuguese authorities and a federal criminal complaint charging the website’s alleged operator has been unsealed. Law enforcement in the U.S. has also seized four domains used by the website: “wt1shop.net,” “wt1store.cc,” “wt1store.com,”…
CSA Alert (AA22-249A) #StopRansomware: Vice Society
Note: This joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort to publish advisories for network defenders that detail various ransomware variants and ransomware threat actors. These #StopRansomware advisories include recently and historically observed tactics, techniques, and procedures (TTPs) and indicators of compromise (IOCs) to help organizations protect against ransomware. Visit stopransomware.gov to…
URLs Are NOT Passwords, and Sadly, That Needed to Be Said (Stolowitz vs. Nuance Communications)
In 2014, Nuance Communications discovered that anyone could access protected health information on one of its platforms. After the situation persisted for years, a former employee decided to submit a whistleblower complaint to HHS. For his efforts, he spent more than one year fending off threatened federal hacking charges, even though no hacking was involved….