Warning: Attackers Exploiting Windows Server Vulnerability

Akshaya Asokan • September 25, 2020

Microsoft and the Cybersecurity and Infrastructure Security Agency have issued warnings that a critical vulnerability in Windows Server dubbed "Zerologon" is being actively exploited in the wild. They urge users to immediately apply an available partial patch.

Cybercrime

As TikTok Negotiations Continue, US App Ban Gets Delayed

Latest

Cybercrime

Government Software Supplier Hit By Ransomware

Prajeet Nair • September 28, 2020

Following a ransomware attack last week that affected its corporate network and phone systems, Tyler Technologies, a supplier of software and services to local, state and federal government agencies, is urging its customers to reset their passwords after reports of "suspicious logins to client systems."

Cyberwarfare / Nation-State Attacks

Federal Judge Temporarily Blocks Trump's TikTok Ban

Prajeet Nair • September 28, 2020

A federal judge Sunday granted TikTok's request for a temporary injunction to block the Trump administration's order that would have banned the Chinese social media app from the U.S. The order came hours before the ban was scheduled to go into effect.

Endpoint Security

Want Your Coffee Machine Back? Pay a Ransom

Jeremy Kirk • September 28, 2020

An internet-connected coffee machine is the latest IoT device to show security problems. The security firm Avast infected the Smarter Coffee machine with ransomware that causes uncontrollable spinning of its grinder and dispensing of hot water. The only option to stop it? Unplug the machine.

Cloud Security

Microsoft Shutters Azure Apps Used by China-Linked Hackers

Akshaya Asokan • September 26, 2020

Microsoft removed 18 apps from its Azure cloud platform that were being used by hackers as part of their command-and-control infrastructure. The threat group, called Gadolinium, was abusing the infrastructure to launch phishing email attacks, Microsoft researchers say.

Cybercrime

Federal Agency Hacked Using Stolen Office 365 Credentials

Doug Olenick • September 25, 2020

The U.S. Cybersecurity and Infrastructure Security Agency has issued a report describing how a threat actor apparently used a well-known VPN vulnerability and compromised Office 365 credentials to gain administrative privileges to a federal agency's network.

Cyberwarfare / Nation-State Attacks

Facebook Removes More Accounts Linked to Russia

Chinmay Rautmare • September 25, 2020

Facebook is again cracking down on fake accounts and pages linked to a Russian IRA troll farm or the country's military intelligence units that were being used for disinformation campaigns. Meanwhile, the FBI issued a fresh warning that threat actors are attempting to target U.S. voting infrastructure.

Governance & Risk Management

Premera Blue Cross Slapped With $6.8 Million HIPAA Fine

Marianne Kolbasuk McGee • September 25, 2020

Premera Blue Cross has agreed to pay a $6.85 million fine, the second largest HIPAA settlement ever announced by federal regulators. The case stems from a 2014 breach, which went undetected for nine months and exposed the information of 10.4 million individuals

Critical Infrastructure Security

Calls Grow to Restore White House Cybersecurity Leader Role

Prajeet Nair • September 25, 2020

The U.S. Government Accountability Office is urging Congress to pass legislation to reestablish a White House cybersecurity coordinator role. The position would coordinate the government's response to online attacks and other cybersecurity challenges facing the nation.

Fraud Management & Cybercrime

GDPR Compliance Used as Phishing Lure

Chinmay Rautmare • September 25, 2020

A recently uncovered phishing campaign used the European Union's General Data Protection Regulation as a lure to steal login credentials. The campaign enticed victims with subject lines indicating their email security system was not in compliance with the law, according to Area 1 Security.

Breach Notification

Analysis: Are Darknet Markets Here to Stay?

Anna Delaney • September 25, 2020

The latest edition of the ISMG Security Report features an analysis on why criminals continue to use darknet markets, despite the risks. Also featured: Hackers target Virgin Mobile KSA; coping with COVID-19 stress.

Fraud Management & Cybercrime

How a Phishing Awareness Test Went Very Wrong

Jeremy Kirk • September 25, 2020

Training employees to resist phishing emails is key to preventing compromises. But an exercise run by Tribune Publishing Co. created a searing backlash after its phishing exercise tempted employees with bogus bonuses in a year in which they had already endured financial hardships.

Governance & Risk Management

Lessons to Learn From Shopify Data Breach

Doug Olenick • September 24, 2020

Shopify's announcement this week that two employees inappropriately accessed transactional data from 200 of the merchants that use its e-commerce platform demonstrates the importance of taking a "zero trust" approach to security and improving identity and access management capabilities, security experts say.