Global Cyber News Digest

Events

Cyber Insider Podcast

Press Room

Daily News Digest

Stay current on the global cyber threat landscape and industry developments with CCOE’s daily digest and library of cybersecurity news and articles.

  • 5 ransomware trends that should alarm banks

    • According to a report published Tuesday by the security company Arctic Wolf, the banking sector saw a 520% increase in phishing and ransomware attacks between March and June of this year. Arctic Wolf has 250 bank and credit union customers.
    • Though they’re targeted with ransomware all the time, U.S. banks have mostly escaped being paralyzed by ransomware so far because they have strong controls in place.
    • Place patching first on the list of anti-ransomware practices. Other items include network segmentation, gaining visibility into activity on end points, use of machine learning and artificial intelligence to detect unusual network or data access behavior, and preparing for ransomware attacks through simulations and response plans.
    - Penny Crosman | October 6, 2020
    hak-iq.us20.list-manage.comOctober 6, 2020

  • Employees would rather be Mobile Mollies than Desktop Doras

    • More than 80 percent of global employees do not want to return to the office full-time, despite 30 percent claiming that being isolated from their team was the biggest hindrance to productivity during lockdown.
    • The current distributed remote work environment has triggered a new threat landscape, with malicious actors increasingly targeting mobile devices with phishing attacks.
    • These range from basic to sophisticated and are likely to succeed, with many employees unaware of how to identify and avoid a phishing attack.
    - Ian Barker | October 6, 2020
    hak-iq.us20.list-manage.comOctober 6, 2020

  • Surge in ransomware attacks threatens student data

    • Student data has become increasingly threatened as cyberattacks on schools intensify this year.
    • This tactic of data exfiltration and extortion, which has become especially prevalent in ransomware attacks, puts additional pressure on schools to pay hefty ransoms in order to protect the privacy of its students.
    • Threat actors have long targeted K-12 schools and higher education in the past, but such attacks have increase amid the shift to remote learning during the COVID-19 pandemic.
    • Awareness around the expanded attack surface is another concern and is not well understood by the teachers, faculty and staff who are actually deploying the distance learning solutions.
    - Arielle Waldman | October 5, 2020
    hak-iq.us20.list-manage.comOctober 5, 2020

  • Cybercriminals are capitalising on the fear of COVID-19 to launch phishing attacks, says Microsoft

    • Tech giant Microsoft reports that it blocked over 13 billion malicious and suspicious mails in 2019, of which more than 1 billion were phishing credential attacks. In 2020, the tech giant is busy tackling misinformation around Covid-19 as cybercriminals pivoted lures to imitate trusted sources like the World Health Organisation (WHO) and other national health organisations, to get users to click on malicious links and attachments.
    • China, the US and Russia were hit the hardest but every country in the world saw at least one Covid-19-themed attack.
    • The report found that threat actors have rapidly increased in sophistication over the past year, using techniques that make them harder to spot, threatening even the savviest targets.
    | October 5, 2020
    hak-iq.us20.list-manage.comOctober 5, 2020

  • Biggest Ransomware Attack Yet Crippled U.S. Hospitals Last Weekend

    • We’ve talked a lot about how while the lack of security in Internet of Things devices was kind of funny at first, this kind of apathy towards privacy and security in everyday technology isn’t a laughing matter. Whether it’s cars being taken over from an IP address up to ten miles away, to the rise in massive new DDoS attacks fueled by your not-so-smart home appliances, security experts have spent the better part of the decade warning us the check for our apathy on this front is coming due.
    • Last weekend, Universal Health Services, with more than 400 locations in the United States, was hit by one of the biggest ransomware attacks in U.S. history. As a result, the hospital chain was forced to resort to using pens and paper to manage patients after their computer systems ground completely to a halt.
    • Such attacks usually come on the weekend when the hospitals are short staffed, and the results usually aren’t pretty.
    | October 2, 2020
    hak-iq.us20.list-manage.comOctober 2, 2020

  • Election security: Thwarting disinformation and interference in 2020

    • As troubling as this year has been for people around the world, and Americans in particular, it’s pure gold for the enemy.
    • Not only are they preying on our emotions and vulnerability during an especially difficult and unprecedented time, but they’re also working in overdrive on ways to corrupt, undermine and remotely disrupt our daily lives.
    • Information operations are nothing new.
    • What is new is the weaponization of content in an attempt to achieve the broadest societal impact via online influence operations, leaks and extortion.
    • I often use the age-old government mantra “one team, one fight.” It’s never been more prevalent than now in this time of global cyber warfare. We have to unite against the adversary, protect our infrastructure, and be cognizant of who is reporting what we believe online.
    - Shawn Henry | October 2, 2020
    hak-iq.us20.list-manage.comOctober 2, 2020

  • To hunt hackers, FBI works more closely with spy agencies

    • America’s top law enforcement agents and spies are teaming up under one roof as part of a new federal strategy to fight foreign hackers, senior FBI officials said in an interview.
    • The FBI’s strategy reorganizes the agency’s anti cybercrime and foreign cyberespionage workforces.
    • It emphasizes partnerships with foreign law enforcement agencies and private internet companies, which often have the best information into a hacker’s activities.
    REUTERS - Christopher Bing | October 1, 2020
    hak-iq.us20.list-manage.comOctober 1, 2020

  • Companies may be punished for paying ransoms to sanctioned hackers - U.S. Treasury

    • In a pair of advisories, the Treasury’s Office of Foreign Assets Control and its Financial Crimes Enforcement Network warned that facilitators of ransomware payments could be prosecuted even if they or the victims did not know that the hackers demanding the ransom were subject to U.S. sanctions.
    • Before, companies could decide whether or not to pay cybercriminals off. Now that those decisions are being brought under government oversight.
    • Cybercriminals have long used the software to loot their victims. Some countries, notably North Korea, are also accused of deploying ransomware to earn cash.
    - Raphael Satter | October 1, 2020
    hak-iq.us20.list-manage.comOctober 1, 2020

  • Cybersecurity Tool Kit

    • Tool kit is grouped into 4 sections:
      • Educate About Cybersecurity
        • Designed to help you inform your employees, customers, and suppliers about the latest methods cyber attackers are using. These are short educational videos and guides with everyone that interacts with your infrastructure and help them improve their cybersecurity awareness.
      • Test Your Defenses
        • A clever human mind with strong motivation and determination can, and will, find a way to infiltrate your systems.
      • Adopt Proactive Cybersecurity
        • A proactive approach to cybersecurity helps businesses of all sizes preempt criminal intent and mitigate the risk of cyberattacks.
      • Prioritize, Remediate, Report
        • Manage your security posture more efficiently with the right data for risk-based prioritization and effectively track and communicate the impact of your efforts across all levels of the organization.
    | October 1, 2020
    hak-iq.us20.list-manage.comOctober 1, 2020

  • Microsoft Office 365 Phishing Attack Uses Multiple CAPTCHAs

    • Researchers are warning of an ongoing Office 365 credential-phishing attack that’s targeting the hospitality industry – and using visual CAPTCHAs to avoid detection and appear legitimate.
    • “Phishing is the most prevalent attack vector affecting enterprises,” said researchers. “These attacks take advantage of our inherent cognitive biases and fool us into entering our credentials. That bias, combined with the tactics used by attackers, make these attacks very successful.”
    - Lindsey O'Donnell | October 1, 2020
    hak-iq.us20.list-manage.comOctober 1, 2020

451 A Street, Suite 500
San Diego, CA 92101

[email protected]

CONNECT WITH US

Linkedin Twitter

Cyber Center of Excellence is a San Diego-based nonprofit dedicated to growing the regional cyber economy and creating a more secure digital community for all.

JOIN US
Linkedin Twitter
Cyber Center of Excellence | Privacy Policy  |  Terms & Conditions
Linkedin Twitter
Privacy Policy  |  Terms & Conditions
© 2024 Cyber Center of Excellence