Collaborate Disseminate
Malicious actors are increasingly launching digital attacks against industrial organizations. Many of these campaigns have been successful, particularly those that have targeted energy utilities and manufacturing plants. In late spring 2019, for instan… Continue reading Just 12% of ICS Security Pros Very Sure of Orgs’ Ability to Respond to Digital Attacks
A convicted Nigerian fraudster earned more than $1 million from a scam that he executed while serving a multi-year prison term. The Economic and Financial Crimes Commission (EFCC) launched an investigation into how Hope Olusegun Aroke had pulled off th… Continue reading Nigerian Fraudster Pulled Off $1M Scam While Serving Prison Term
Security researchers have released a new decryption tool that could help victims of Jigsaw ransomware recover their affected files for free. In a blog post announcing the new utility, Emsisoft explained that its decryptor can work against 85 extensions… Continue reading New Decryption Tool Released for Jigsaw Ransomware
Macy’s is notifying customers about a data security incident that might have exposed some of their personal and financial information. The American department chain store said that it first learned of the incident back in mid-October. At that tim… Continue reading Macy’s Says Security Incident Might Have Exposed Customers’ Data
Digital fraudsters are stealing Microsoft Office 365 administrator credentials as part of a broader phishing campaign targeting organizations. The campaign began with a phishing email that leveraged Microsoft and its Office 365 brand to lull recipients… Continue reading Phishers Targeting Microsoft Office 365 Admin Credentials
Digital fraudsters have launched a new phishing campaign whose attack emails instruct recipients to click on a “Keep same password” button. Bleeping Computer observed that the phishing campaign uses attack emails that arrive with “Acc… Continue reading Phishing Email Instructs Users to Click on “Keep Same Password” Button
Researchers have detected a new ransomware family they’re calling “PureLocker” which attackers are using to target enterprises’ production servers. Intezer detected a sample of the ransomware masquerading as the Crypto++ C++ cry… Continue reading Attackers Using PureLocker Ransomware to Target Enterprises’ Servers
Mexican state-owned petroleum company Petroleos Mexicanos (Pemex) said that it quickly neutralized a digital attack that struck its computer systems. In a statement released on November 11, a spokesperson for Pemex said that the company had quickly res… Continue reading Mexico’s Pemex Said It Quickly Neutralized Digital Attack
The Texas Health and Human Services Commission (TX HHS) must pay a civil penalty of $1.6 million for having violated HIPAA. The Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services (HHS) imposed the penalty in response to H… Continue reading Texas HHS Commission Penalized $1.6M for HIPAA Violations
Digital fraudsters launched a new phishing campaign that used subpoena-themed emails to deliver information-stealing malware. Detected by Cofense, the campaign targeted employees of insurance and retail companies with phishing emails informing them tha… Continue reading Phishing Campaign Used Subpoena-Themed Email to Deliver Infostealer