Global Cyber News Digest

The grim reality of cyberattacks: How to mitigate the risks?

Source: IP Pro Portal
By: Sonali Datta
Published: August 26, 2019

* According to a 2019 press release by Global Market Insights, the cybersecurity market's value is anticipated to reach $300 billion by 2024. * Sophisticated cybersecurity measures are important, but it is equally crucial to pay attention in securing company-owned devices and hardware from thefts, loss and misuse.

Hostinger Data Breach Affects Almost 14 Million Customers

Source: BleepingComputer
By: Ionut Ilascu
Published: August 25, 2019

* Hosting provider Hostinger today announced that it reset the login passwords of 14 million of its customers following a recent security breach that enabled unauthorized access to a client database. * Hostinger offered more details about the incident in a blog post today, saying that an unauthorized party accessed one of their servers and was then able to obtain further access to customer information. * This was possible because the server had an authorization token that allowed access and privilege escalation to a RESTful API used for queries about customers and their accounts, including phone numbers and home address or business address.

Sextortion scams are back, security expert warns

Source: FOX News
By: Brooke Crothers
Published: August 23, 2019

* Your account has been hacked and we have video proof of you watching sexual content on porn sites. Now we demand immediate payment in Bitcoin or we will release the video to the public.
* Extortionists are able to convince victims that they have the goods on them by flaunting a victim's breached credentials - such as usernames, passwords, and addresses - that have been gleaned from the Dark Web then bolstering this with training in the dark art of extortion via DIY extortion guides, according to a report from Digital Shadows, a U.K.-based cybersecurity company.

Phishing: These are the companies that hackers impersonate when they try to steal your data

Source: ZDNet By: Danny Palmer 22August2019

* Microsoft is still the brand most spoofed by cyber criminals attempting to conduct phishing attacks - but fraudsters are increasingly sending phony emails claiming to be the likes of Facebook and Amazon to steal login credentials, financial data and other information from victims.
* An analysis of phishing URLs and most-impersonated brands in recent months has been conducted by cybersecurity company Vade Secure.

--_000_CY1P110MB0550780B480853BA08E4F9F6D0A40CY1P110MB0550NAMP_ Content-Type: text/html; charset="us-ascii" Content-Transfer-Encoding: quoted-printable

--_000_CY1P110MB0550780B480853BA08E4F9F6D0A40CY1P110MB0550NAMP_--

Texas ransomware attacks show big gaps in cyber defenses - expect more like them

Source: CNBC By: Kate Fazzini 22August2019

* Texas is still recovering from a spate of ransomware attacks against small towns.
* The attacks are highly worrisome because of how easy they were for criminals to execute and how vulnerable small towns in the U.S. may be.
* Ransomware attacks are not always merely criminal acts - they have been used readily in the past by hostile nation-states and as a means to hobble critical services, including emergency care and vaccine production.

Hackers Targeting Healthcare with Financially Motivated Cyberattacks

Source: Health IT Security By: Jessica Davis 21August2019

* The healthcare sector is seeing a high frequency of financially motivated cyberattacks targeting personally identifiable information and patient data due to poor infrastructure security, FireEye finds.
* While it's been clear for some time that hackers have targeted the healthcare sector given many providers operate on outdated or unsupported systems, new FireEye research explains the motivation behind the hacks, including attempts to steal research data.

Cyber security news round-up: August 2019

Source: Digital Health By: Owen Hughes 23August2019

* The August edition of Digital Health's cyber security round up includes updates on the Capital One data breach - described as one of the biggest ever - and insights from Hiscox's Cyber Readiness report.

up call to cities

Source: The Hill
By: Maggie Miller
Published: August 22, 2019

* A recent spree of ransomware attacks in Texas has highlighted the increasing threat they pose to city governments, with experts warning the "lucrative" attacks won't go away. * The Texas Department of Information Resources has confirmed that 22 Texas entities, mostly local governments, have been hit by the ransomware attacks that took place late last week. * The department pointed to a =93single threat actor=94 as being responsible for the attacks, which did not impact any statewide systems.

State-Sponsored Cyberattacks Target Medical Research

Source: Dark Reading
By: Robert Lemos
Published: August 21, 2019

* Cancer research is a particular target among Chinese espionage groups, says security firm FireEye.
* Online attackers from Russia, Vietnam, and especially China are targeting healthcare data and stealing intellectual property from hospitals, pharmaceutical companies, and research universities.

MoviePass data breach leaves credit card numbers open

Source: TechRadar.pro
By: Anthony Spadafora
Published: August 21, 2019

* Movie ticket subscription service MoviePass is the latest company to suffer a data breach after tens of thousands of customer card numbers and personal credit cards were left unsecured on a server that was not password protected.
* The database is massive and contains over 161m records including some pertaining to the service's daily operations as well as sensitive user information such as MoviePass customer card numbers.