Allan Liska – WindowsTechs.com

What more can be done to stop ransomware attacks?

Posted on September 19, 2024 by Greg Otto

A panel of experts debated at the 2024 mWISE conference what more could be done in the wake of police action and tens of millions in ransom payments over the past year.

The post What more can be done to stop ransomware attacks? appeared first on CyberScoop.

Continue reading What more can be done to stop ransomware attacks? →

Biden’s cybersecurity legacy: ‘a big shift’ to private sector responsibility

Posted on July 29, 2024 by Tim Starks

Over the course of his term, Joe Biden has presided over an ambitious agenda on regulation and more, to both praise and criticism.

The post Biden’s cybersecurity legacy: ‘a big shift’ to private sector responsibility appeared first on CyberScoop.

Continue reading Biden’s cybersecurity legacy: ‘a big shift’ to private sector responsibility→

CDK hack shows SEC disclosure standards are unsettled

Posted on July 16, 2024 by Tim Starks

The early application of the regulatory agency’s new cybersecurity reporting rules reveal that materiality is in the eye of the beholder.

The post CDK hack shows SEC disclosure standards are unsettled appeared first on CyberScoop.

Continue reading CDK hack shows SEC disclosure standards are unsettled→

Twitter may have given user’s private data to a ransomware hacker, who then ran a researcher offline

Posted on May 2, 2022 by AJ Vicens

If true, it’s just the latest example of phony data requests used for illicit purposes.

The post Twitter may have given user’s private data to a ransomware hacker, who then ran a researcher offline appeared first on CyberScoop.

Continue reading Twitter may have given user’s private data to a ransomware hacker, who then ran a researcher offline→

Microsoft Patch Tuesday, February 2022 Edition

Posted on February 8, 2022 by BrianKrebs

Microsoft today released software updates to plug security holes in its Windows operating systems and related software. This month’s relatively light patch batch is refreshingly bereft of any zero-day threats, or even scary critical vulnerabilities. But it does fix four dozen flaws, including several that Microsoft says will likely soon be exploited by malware or malcontents. Continue reading Microsoft Patch Tuesday, February 2022 Edition→

Ransomware isn’t always about gangs making money. Sometimes it’s about nations manufacturing mayhem.

Posted on January 18, 2022 by Tim Starks

Ransomware is fundamentally about reaping massive profits from victims — payments were on pace to cross the billion-dollar threshold in 2021, according to the U.S. government — but there are signs foreign government-connected groups are increasingly moving into a territory dominated by criminal gangs, and for an entirely different motive: namely, causing chaos. Research that Microsoft and cybersecurity company CrowdStrike recently publicized separately concluded that Iranian hackers tied to Tehran had been conducting ransomware attacks that weren’t about making money, but instead disrupting their enemies. It echoed research from last spring and summer by FlashPoint and SentinelOne, respectively. When disruptive ransomware pays off, those who have studied the phenomenon say, it can embarrass victims. It can be used to steal data and leak sensitive information the public. It can lock up systems, disabling targets. And given the prominence of ransomware, it’s another method that foreign intelligence and military agencies can use […]

The post Ransomware isn’t always about gangs making money. Sometimes it’s about nations manufacturing mayhem. appeared first on CyberScoop.

Continue reading Ransomware isn’t always about gangs making money. Sometimes it’s about nations manufacturing mayhem.→

Microsoft Patch Tuesday, November 2021 Edition

Posted on November 9, 2021 by BrianKrebs

Microsoft Corp. today released updates to quash at least 55 security bugs in its Windows operating systems and other software. Two of the patches address vulnerabilities that are already being used in active attacks online, and four of the flaws were disclosed publicly before today — potentially giving adversaries a head start in figuring out how to exploit them. Continue reading Microsoft Patch Tuesday, November 2021 Edition→

Microsoft Patch Tuesday, September 2021 Edition

Posted on September 14, 2021 by BrianKrebs

Microsoft today pushed software updates to plug dozens of security holes in Windows and related products, including a vulnerability that is already being exploited in active attacks. Also, Apple has issued an emergency update to fix a flaw that’s reportedly been abused to install spyware on iOS products, and Google’s got a new version of Chrome that tackles two zero-day flaws. Finally, Adobe has released critical security updates for Acrobat, Reader and a slew of other software. Continue reading Microsoft Patch Tuesday, September 2021 Edition→

Microsoft Patch Tuesday, January 2021 Edition

Posted on January 13, 2021 by BrianKrebs

Microsoft today released updates to plug more than 80 security holes in its Windows operating systems and other software, including one that is actively being exploited and another which was disclosed prior to today. Ten of the flaws earned Microsoft’s most-dire “critical” rating, meaning they could be exploited by malware or miscreants to seize remote control over unpatched systems with little or no interaction from Windows users. Continue reading Microsoft Patch Tuesday, January 2021 Edition→

Patch Tuesday, Good Riddance 2020 Edition

Posted on December 8, 2020 by BrianKrebs

Microsoft today issued its final batch of security updates for Windows PCs in 2020, ending the year with a relatively light patch load. Nine of the 58 security vulnerabilities addressed this month earned Microsoft’s most-dire “critical” label, meaning they can be abused by malware or miscreants to seize remote control over PCs without any help from users. Continue reading Patch Tuesday, Good Riddance 2020 Edition→