Google sues crypto investment app makers over alleged massive “pig butchering” scam

Two China-based Android app developers are being sued by Google for an alleged scam targeting 100,000 users worldwide through fake cryptocurrency and other investment apps.

Read more in my article on the Hot for Security blog. Continue reading Google sues crypto investment app makers over alleged massive “pig butchering” scam

Google patches Pixel phone zero-days after exploitation by “forensic companies”

Google has issued a security advisory to owners of its Android Pixel smartphones, warning that it has discovered someone has been targeting some devices to bypass their built-in security.

Read more in my article on the Tripwire State of Security blo… Continue reading Google patches Pixel phone zero-days after exploitation by “forensic companies”

What makes a ransomware attack eight times as costly? Compromised backups

New research has found that ransomware remediation costs can explode when backups have been compromised by malicious hackers – with overall recovery costs eight times higher than for those whose backups are not impacted.

Read more in my article on t… Continue reading What makes a ransomware attack eight times as costly? Compromised backups

Sellafield nuclear waste dump faces prosecution over cybersecurity failures

The UK’s Office for Nuclear Regulation (ONR) has started legal action against the controversial Sellafield nuclear waste facility due to years of alleged cybersecurity breaches.

Read more in my article on the Hot for Security blog. Continue reading Sellafield nuclear waste dump faces prosecution over cybersecurity failures

Ransomware hits The Big Issue. Qilin group leaks confidential data

The Qilin ransomware group has targeted The Big Issue, a street newspaper sold by the homeless and vulnerable.

Spost on Qilin’s dark web leak site claimed the gang has stolen 550 GB of confidential data from the periodical’s parent company.

Read … Continue reading Ransomware hits The Big Issue. Qilin group leaks confidential data

Trezor’s Twitter account hijacked by cryptocurrency scammers via bogus Calendly invite

Hardware wallet manufacturer Trezor has explained how its Twitter account was compromised – despite it having sensible security precautions in place, such as strong passwords and multi-factor authentication.

Read more in my article on the Hot for Se… Continue reading Trezor’s Twitter account hijacked by cryptocurrency scammers via bogus Calendly invite

Notorious Nemesis Market zapped by video game-loving German police

Nemesis Market, a notorious corner of the darknet beloved by cybercriminals and drug dealers, has been suddenly shut down after German police seized control of its systems.

Read more in my article on the Tripwire State of Security blog. Continue reading Notorious Nemesis Market zapped by video game-loving German police

Ransomware: lessons all companies can learn from the British Library attack

In October 2023, the British Library suffered “one of the worst cyber incidents in British history,” as described by Ciaran Martin, ex-CEO of the National Cyber Security Centre (NCSC).

What lessons can other organisations learn from the ransomware … Continue reading Ransomware: lessons all companies can learn from the British Library attack