Collaborate Disseminate
Magecart actors are using spray and pray tactics to discover misconfigured Amazon S3 buckets and deploy their payment card skimmers. In April 2019, RiskIQ began tracking a Magecart group campaign in which threat actors took to automatically scanning fo… Continue reading Magecart Actors Using Spray and Pray Tactics to Find Misconfigured Buckets
A malvertising campaign is redirecting users to the RIG exploit kit for the purpose of loading ERIS ransomware onto vulnerable machines. Over the 5-7 July weekend, security researcher nao_sec discovered a malvertising campaign that was abusing the popc… Continue reading Malvertising Campaign Redirects to RIG Exploit Kit, ERIS Ransomware
A security researcher found a misconfigured ElasticSearch cluster that exposed over 90 million personal and businesses data records. On 1 July, GDI Foundation member and an independent security researcher Sanyam Jain found that the unprotected ElasticS… Continue reading Misconfigured ElasticSearch Cluster Exposed Over 90 Million Records
A national trade association has disclosed a data breach that allegedly took place following a successful phishing attack. On 3 July, the American Land Title Association (ALTA) said that the security incident affected title and settlement company usern… Continue reading National Trade Association Discloses Data Breach Tied to Alleged Phishing Attack
The United States Senate has passed a bill to help strengthen the defenses of the U.S. energy grid against digital attacks. On 27 June, the Senate passed the Securing Energy Infrastructure Act. Introduced by U.S. Senators Angus King (I-Maine) and Jim R… Continue reading Senate Passes Bill to Help Defend U.S. Energy Grid against Digital Attacks
A municipality in Florida fired its IT director shortly after paying off bad actors who infected its computer systems with ransomware. Joe Helfenberg, the city manager of Lake City, confirmed to WCJB that the municipality fired Brian Hawkins, who was i… Continue reading Florida City Fires IT Director after Meeting Ransomware Actors’ Demands
Bulgarian authorities arrested an IT professional after he publicly demonstrated a vulnerability affecting software used by kindergartens. On 25 June, the Bulgarian IT expert Petko Petrov shared his findings about the software on Facebook. His post inc… Continue reading IT Pro Arrested After Demonstrating Bug in Kindergarten Software
Vulnerability management (VM) is an essential process through which organizations can reduce risk in their environments. But myths and misconceptions surrounding VM abound. For instance, organizations commonly approach vulnerability management in the s… Continue reading How to Avoid Common Software Vulnerability Management Mistakes
Riviera Beach paid bad actors approximately $600,000 in ransom to recover its information after it fell victim to a ransomware attack. On 17 June, the board of the Palm Beach County municipality voted unanimously to authorize that the city insurer pay … Continue reading Riviera Beach Pays Nearly $600K to Recover Data after Ransomware Attack
A new modular backdoor detected as “Plurox” comes with multiple plugins that expand its capabilities to include cryptomining and worm-like behavior. In February 2019, Kaspersky Lab’s researchers first detected the backdoor. Their anal… Continue reading Modular Plurox Backdoor Comes with Cryptomining, Worm-Like Plugins