Collaborate Disseminate
Researchers observed the distribution of the DanaBot banking trojan in a large attack campaign targeting U.S. organizations. On 26 September, Proofpoint detected a campaign consisting of hundreds of thousands of emails intended for U.S. recipients. Eac… Continue reading DanaBot Observed in Large Campaign Targeting U.S. Organizations
Regulators imposed a fine of £16.4 million on Tesco Bank for a digital attack that affected some customers and their accounts in 2016. On 1 October, the Financial Conduct Authority (FCA) announced that its penalty responded to a November 2016 secu… Continue reading Tesco Bank Fined £16.4 Million for 2016 Digital Attack
The FBI and the U.S. Department of Homeland Security are investigating a ransomware attack that affected at least some of the information systems belonging to the Port of San Diego. Port officials first reported the attack on Tuesday. Port of San Diego… Continue reading Port of San Diego Suffers Ransomware Attack
Researchers have discovered a new botnet called “Torii” which differentiates itself from Mirai by its use of several sophisticated tactics. Infosec expert @VessOnSecurity is the first to have discovered the new botnet: My honeypot just caug… Continue reading New “Torii” Botnet’s Sophisticated Techniques Set It Apart From Mirai
A former employee of the U.S. National Security Agency (NSA) received a five-year prison sentence for retaining classified national defense information. On 25 September, the Department of Justice sentenced Nghia Hoang Pho, 68, of Ellicott City, Marylan… Continue reading Former NSA Employee Gets 5 Years in Prison for Retaining Classified Data
Two former employees of Wendy’s reportedly filed a lawsuit accusing the fast food restaurant chain of breaking the law in the way it collects and stores employees’ fingerprints. According to ZDNet, former Wendy’s employees Martinique … Continue reading Wendy’s Reportedly Sued Over Collection of Employees’ Fingerprints
A Romanian citizen has pleaded guilty to federal charges resulting from a ransomware attack that targeted a police department. On 20 September, Eveline Cismaru, 28, pleaded guilty before the Honorable Dabney L. Friedrich in the District of Columbia to … Continue reading Romanian Citizen Admits Guilt in Police Department Ransomware Attack
The Information Commissioner’s Office (ICO) of the United Kingdom announced it will fine Equifax £500,000 for a data breach that occurred in 2017. In a monetary penalty notice filed on 19 September, the ICO revealed its decision to impose th… Continue reading ICO to Fine Equifax £500,000 for 2017 Data Breach
The U.S. State Department said that some employees’ information might have been exposed in a recent security incident. In a notice shared by Politico, the State Department disclosed that “activity of concern” on an email system might … Continue reading State Department Says Some Employee Info Possibly Exposed in Security Incident
A quarter of civilian federal agencies have adopted DMARC and SPF email authentication protocols for all their domains in compliance with a mandate. Thirty-four percent of 133 agencies are now fully compliant with what is known as BOD 18-01. Issued by … Continue reading A Quarter of Civilian Federal Agencies Have Adopted DMARC and SPF for All Domains