The Clop ransomware group may well be the next in law enforcement crosshairs, as the US Department of State has authorized a $10 million bounty on information about the group under its "Reward for Justice" program.
Cyber Security
Cyber criminals, state-sponsored hackers and even the occasional disgruntled employee are constantly looking to gain unauthorized access for a variety of purposes: theft of money, cyber espionage, personal information for sale or for use in scams, and damage to critical infrastructure for just a few of the most common.
So how does an organization mitigate an entire world full of continual cyber attacks? Just as buildings have a number of necessary elements of physical security: access control, cameras, alarms and so on; there are similar key elements of cyber security that are absolutely vital for just about any modern business.
It starts with identifying and closing the most common doors that attackers use. For example, phishing attacks on employees are far and away the most common initial point of entry. The breach of even a low-level employee account can quickly turn into an escalation in access privileges and the ability to reach sensitive information. This is also true of smart devices, which are generally more poorly secured than computers and phones.
An audit report reveals the Truebit crypto hack was caused by a relatively simple overflow vulnerability, one that allowed an attacker to abscond with the equivalent of $26 million from the Truebit Protocol.
Hack of crypto exchange CoinEx's hot wallets has led to a loss of about $70 million in assorted asset types. The data breach was reportedly caused by compromised private keys suspected to be stolen by North Korea's Lazarus group.
The Inferno Drainer malware that plagued the crypto world throughout 2023 ultimately compromised about 130,000 victims and stole about $87 million in total, according to a new report from Group-IB. It was part of a broader movement of "crypto drainer" services that some security experts believe is poised to become the next big thing in cybercrime in 2024.
A dark web marketplace calling itself "BidenCash" is attempting to establish itself by giving away 1.2 million stolen credit cards, but security researchers believe most are already invalid.
1.6 million unemployment claimants in Washington may have just received an identity theft headache. A hack of the State Auditor's office has exposed extremely sensitive personal information.
For enterprises, getting up to speed with cloud deployments, migrations, and protecting their cloud infrastructure in time and cost-efficient ways is more important now more than ever.
Google's Threat Analysis Group has announced it is providing free USB security keys to a collection of politicians, activists and other high-risk individuals likely to be targeted by nation-state hackers.
Encryption vulnerability renders Samsung phones in the Galaxy line from 2017 to 2021 completely insecure, at least until they are updated to security patches from July 2021 and beyond.
Hackers are exploiting a 12-year-old router vulnerability existing in the Arcadyan firmware, potentially affecting millions of devices on home and corporate networks, and exposing serious supply chain risks.










