Scanned IDs of 119,000 FedEx customers exposed online

An unsecured Amazon Web Services bucket holding personal information and scans of IDs of some 119,000 US and international citizens has been found sitting online by Kromtech security researcher earlier this month. The stored data had been stockpiled by… Continue reading Scanned IDs of 119,000 FedEx customers exposed online

NotPetya ransomware cost Merck more than $310 million

The NotPetya cyberattack has cost the American pharmaceutical giant Merck more than $135 million in sales and $175 million in additional costs since June, the company said in a call with investors Friday. That number comes in addition to the $300 million loss FedEx said it suffered when systems were disrupted until as late as September. The shipping company Maersk lost $200 million when its systems were infected by the ransomware outbreak. The nation of Ukraine got the worst, however, with more than 1,500 people and organizations reporting being affected by the ransomware. In response, NATO pledged to increase aid to Ukraine’s cybersecurity. The June attack impacted Merck’s global manufacturing, research and sales for nearly a week. Company email was disabled, 70,000 employees were forbidden from touching their computers, and instructions were sent via copy-and-pasted text messages. The exact cause of the infection remains publicly unclear. Merck’s pain may not yet be over. […]

The post NotPetya ransomware cost Merck more than $310 million appeared first on Cyberscoop.

Continue reading NotPetya ransomware cost Merck more than $310 million

Source: Deloitte Breach Affected All Company Email, Admin Accounts

Deloitte, one of the world’s “big four” accounting firms, has acknowledged a breach of its internal email systems, British news outlet The Guardian revealed today. Deloitte has sought to downplay the incident, saying it impacted “very few” clients. But according to a source close to the investigation, the breach dates back to at least the fall of 2016, and involves the compromise of all administrator accounts at the company as well as Deloitte’s entire internal email system. Continue reading Source: Deloitte Breach Affected All Company Email, Admin Accounts

Microsoft’s new Data Box lets you mail up to 100 TB to its Azure cloud

 Moving lots of data to the cloud can take a long time and cost quite a bit, even over fast connections. Like its competitors — and especially AWS — Microsoft has long allowed its Azure users to import data to its cloud by shipping hard drives to its data centers. It’s now going a step further with the preview launch of the 100 TB Azure Data Box, its answer to AWS’s 50… Read More Continue reading Microsoft’s new Data Box lets you mail up to 100 TB to its Azure cloud

FedEx attributes $300 million loss to NotPetya ransomware attack

FedEx reported an estimated $300 million loss in its first quarter earnings report Tuesday, attributing the loss mostly to a computer virus that impacted the company’s operations across Europe in July. The package delivery company’s Dutch subsidiary, TNT Express, was infected with the NotPetya ransomware virus in late June. NotPetya hit companies in Ukraine in late June and soon spread to other countries. Much of TNT Express’s operations are based in Ukraine. The attack froze users’ computers, encrypted their files and demanded a ransom of $300 in Bitcoin to regain access.  Cybersecurity researchers found, however, that regardless of whether a victim paid the ransom for NotPetya, data on infected computers may be deleted. The earnings report released Tuesday by FedEx notes that most of TNT’s services resumed after the attack and “substantially all” its critical operational systems are back up and running, but volume, revenue and profits were  negatively impacted. […]

The post FedEx attributes $300 million loss to NotPetya ransomware attack appeared first on Cyberscoop.

Continue reading FedEx attributes $300 million loss to NotPetya ransomware attack

Linux hacking, Petya, and Windows – Paul’s Security Weekly #520

Separating the hacked and the paranoid, remote Linux hacking, Petya goes postal at FedEx, today’s mainstream hacktivism tools, and why choosing Windows should get you fired! Paul’s Security News Stories Separating the Paranoid from the Hacked Choosing Windows for your organization should get you fired – I love this because it is to controvertial of a […]

The post Linux hacking, Petya, and Windows – Paul’s Security Weekly #520 appeared first on Security Weekly.

Continue reading Linux hacking, Petya, and Windows – Paul’s Security Weekly #520

Fake FedEx USPS UPS delivery notifications continue to deliver Kovter and ransomware

The gangs spreading malware via the “cannot deliver your parcel notifications” or “check where your parcel is”  spoofing FedEx, DHL, UPS, USPS etc. have changed delivery method. The emails are still very similar to the ones we are used to seeing with this sort of subject line. USPS issue #06914074: unable to delivery parcel Parcel #006514814 shipment problem, please review USPS parcel #3150281 delivery problem Continue reading → Continue reading Fake FedEx USPS UPS delivery notifications continue to deliver Kovter and ransomware

Fake FedEx USPS UPS delivery notifications continue to deliver Kovter and ransomware

The gangs spreading malware via the “cannot deliver your parcel notifications” or “check where your parcel is”  spoofing FedEx, DHL, UPS, USPS etc. have changed delivery method. The emails are still very similar to the ones we are used to seeing with this sort of subject line. USPS issue #06914074: unable to delivery parcel Parcel #006514814 shipment problem, please review USPS parcel #3150281 delivery problem Continue reading → Continue reading Fake FedEx USPS UPS delivery notifications continue to deliver Kovter and ransomware