LATEST POST
Poloniex crypto-exchange offers 5% cut to thieves if they return that $120M they nicked
Governments may not want hacking victims to negotiate with threat actors or pay ransom, but the founder of a hacked crypto exchange is offering the hacker(s) a reward if they return what they stole. The Register reports: The founder of the Poloniex has offered to pay off thieves who drained an estimated $120 million of […]
Hackers swipe Booking.com, damage from attack is global
The Asahi Shimbun reports: Hackers breached Booking.com, one of the world’s largest online accommodation reservation sites, by posing as hotel staff to steal credit card information from travelers making bookings. Phishing scams like this have plagued Japan since May. The headquarters of Booking.com in the Netherlands conceded the damage is occurring on a global scale. At least 68 hotels […]
ICBC ransomware attack triggers global regulator, trader scrutiny
Reuters reports: Global regulators and bond traders were on Friday trying to gauge the impact of a ransomware attack on the Industrial and Commercial Bank of China (ICBC), China’s biggest bank, that disrupted trades in the vital U.S. Treasuries market this week. ICBC’s U.S. arm was hit on Thursday in the latest of a string of ransomware […]
Basically all of Maine had data stolen by a ransomware gang
Engadget reports: The state agencies of Maine had fallen victim to cybercriminals who exploited a vulnerability in the MOVEit file transfer tool, making them the latest addition to the growing list of entities affected by the massive hack involving the software. In a notice the government has published about the cybersecurity incident, it said the event impacted […]
Google to delete millions of accounts forever in global purge that begins in under a month – eight ways to save yours
Consumers who have Google accounts that haven’t been used in a while may have received emails from Google telling them their accounts will be purged if they don’t sign in to them soon to keep them alive. While those emails may look like phishing attempts, they may be real emails from Google. The Sun reports: […]
Microsoft: SysAid zero-day flaw exploited in Clop ransomware attacks
Bleeping Computer reports: Threat actors are exploiting a zero-day vulnerability in the service management software SysAid to gain access to corporate servers for data theft and to deploy Clop ransomware. SysAid is a comprehensive IT Service Management (ITSM) solution that provides a suite of tools for managing various IT services within an organization. The Clop ransomware is notorious […]
Southwestern Ontario hospitals will rebuild network from scratch amid fallout from cyberattack
Five hospitals in southwest Ontario are still working to restore services and predict that while services are being restored, it may take months to figure out who was affected by a recent ransomware attack on their IT vendor, TransForm SSO, that resulted in locked files and the theft of millions of data files and records […]
NYDFS Amends Cybersecurity Regulation; Some Provisions Go Into Effect December 1
New York State continues to strengthen cybersecurity regulations for financial institutions. New amendments to the Cybersecurity Regulation enacted in 2017 strengthen the regulation and add new security obligations. As Hunton Andrews Kurth summarizes it, “The new amendments strengthen the initial framework and require NYDFS-regulated entities to adhere to a number of additional prescriptive data security […]