BlackMatter's dedicated data leak site (Source: Recorded Future)

Is REvil Ransomware Operation Returning as 'BlackMatter'?

Mathew J. Schwartz • July 28, 2021

Has the REvil ransomware operation come storming back? Experts say a new operation called BlackMatter has wielded REvil's code against at least one victim, claims to combine "the best features of DarkSide, REvil and LockBit," and may be a former affiliate of one or more of these ransomware operations.

Cyberwarfare / Nation-State Attacks

Can the US Curb China's Cyber Ambitions?

Latest

Critical Infrastructure Security

Biden Calls for Critical Infrastructure Security Standards

Scott Ferguson • July 28, 2021

President Joe Biden signed an executive national security memorandum on Wednesday calling for the development of new critical infrastructure cybersecurity standards for various industries. CISA and NIST will develop the standards, and compliance will be voluntary - at least initially.

Business Continuity Management / Disaster Recovery

Kaseya's Unitrends Technology Has Zero-Day Flaws

Prajeet Nair • July 28, 2021

Researchers are warning of three zero-day vulnerabilities in Kaseya's Unitrends cloud-based enterprise backup and disaster recovery technology. The news comes after a July 2 ransomware attack exploiting flaws in Kaseya's VSA software had a major impact.

Business Continuity Management / Disaster Recovery

Measuring Success of No More Ransom Project

Rashmi Ramesh • July 28, 2021

Europol says the No More Ransom Project, a portal launched five years ago, so far has helped more than 6 million ransomware victims worldwide recover their files for free so they could avoid paying almost 1 billion euros ($1.2 billion) in ransoms.

Fraud Management & Cybercrime

Congress Urged to Update Federal Laws to Combat Ransomware

Scott Ferguson • July 27, 2021

Congress needs to update and expand federal laws to combat the surge in ransomware attacks, federal cybersecurity experts told a Senate committee at a Tuesday hearing.

Critical Infrastructure Security

Experts Testify on Pipeline Cybersecurity Measures

Dan Gunderman • July 27, 2021

At a Senate hearing on pipeline cybersecurity, leaders from several federal agencies briefed lawmakers on the roles regulators can play in the aftermath of the Colonial Pipeline attack. Lawmakers urged the agencies to "flatten the bureaucracy" to improve relationships with companies that support pipelines.

Fraud Management & Cybercrime

New Hacking Group Exploits Vulnerabilities in Web Apps

Akshaya Asokan • July 27, 2021

A newly discovered threat group dubbed Praying Mantis is targeting businesses in the U.S by exploiting vulnerabilities in internet-facing web applications to steal credentials and other data, the security firm Sygnia says.

COVID-19

SASE: Building a Migration Strategy

Geetha Nandikotkur • July 27, 2021

Security experts offer an analysis of Gartner's new strategic road map for SASE adoption that emphasizes the need for a detailed migration plan and offer tips for a successful rollout.

Business Continuity Management / Disaster Recovery

Kaseya Says It Paid No Ransom to Obtain Universal Decryptor

Doug Olenick • July 26, 2021

Remote management software company Kaseya says it obtained the ability to decrypt all victims of a massive REvil - aka Sodinokibi - attack via its software, without paying a ransom to attackers. But Kaseya has still not revealed how it obtained the decryption key, except to say it was supplied by a third party.

Governance & Risk Management

18 Companies to Participate in NIST 'Zero Trust' Project

Dan Gunderman • July 26, 2021

NIST has selected 18 technology companies to demonstrate "zero trust" security architectures as it prepares to draft guidance for use of the model by federal agencies, which the private sector can also follow.

Cybercrime

Attackers Rely on 'Exotic' Languages for Malware Creation

Rashmi Ramesh • July 26, 2021

Malware developers increasingly are relying on "exotic" programming languages - such as Go, Rust, DLang and Nim - to create malicious code that can avoid detection by security tools and add a layer of obfuscation to an attack, according to a report released Monday by BlackBerry.

Governance & Risk Management

Australia Says Uber 'Interfered' With Users' Privacy

Jeremy Kirk • July 26, 2021

Australia's data regulator has found that Uber interfered with the privacy of 1.2 million of its customers as a result of a 2016 global data breach. Uber says it's made improvements to its systems and its internal security policies.

Cybercrime as-a-service

AvosLocker Ransomware Gang Recruiting Affiliates, Partners

Prajeet Nair • July 26, 2021

A recently discovered ransomware-as-a-service gang dubbed AvosLocker is recruiting affiliates and partners, including "pentesters" and "access brokers," on darknet forums, according to the security firm Malwarebytes.