U.S. entertainment and media law firm with A-list celebrity clients such as Lady Gaga was hit by a ransomware attack with more than 750 gigabytes of personal information stolen.
Cyber Security
Cyber criminals, state-sponsored hackers and even the occasional disgruntled employee are constantly looking to gain unauthorized access for a variety of purposes: theft of money, cyber espionage, personal information for sale or for use in scams, and damage to critical infrastructure for just a few of the most common.
So how does an organization mitigate an entire world full of continual cyber attacks? Just as buildings have a number of necessary elements of physical security: access control, cameras, alarms and so on; there are similar key elements of cyber security that are absolutely vital for just about any modern business.
It starts with identifying and closing the most common doors that attackers use. For example, phishing attacks on employees are far and away the most common initial point of entry. The breach of even a low-level employee account can quickly turn into an escalation in access privileges and the ability to reach sensitive information. This is also true of smart devices, which are generally more poorly secured than computers and phones.
New malware Ramsay was found to specifically target air-gapped networks by laying low and inactive in infected files until it is connected to the intended target.
Cutting down hacker dwell time will help companies minimize financial and reputational impact to their business, especially if they are subjected to compliance laws like GDPR.
85% of business leaders in a new study believe that their public facing APIs and web applications have fallen victim to automated attack from malicious bots.
Compromised data belonging to ten companies is on sale on the dark web by a hacking group called ShinyHunters. The 73 million stolen user records is being sold for $18,000.
The Most Potent Banking Malware Receives Updates Allowing Hackers More Control Over Infected Devices
Anubis, one of the most potent banking malware, has received new updated features including one that allows hackers to detect when the user is looking at their Android phone.
Some privacy vault apps on Google Play Store are used as remote backdoor to harness devices for fake clicks in ad fraud scheme and to exfiltrate user data and files.
Cybersecurity agencies in U.K. and U.S. warn of APT groups targeting cyberattacks at entities involved in COVID-19 response efforts to gather intelligence and commit espionage.
A data breach that exposed usernames and passwords of 28,000 GoDaddy web hosting accounts had raised security concerns over the authentication methods being used.
Growing gap in cybersecurity workforce can be addressed by tapping into real-time information and threat intelligence from SOC analysts and security teams around the world.










