Collaborate Disseminate
The Fortnite team announced it will reward users who enable two-factor authentication (2FA) on their accounts with a free emote. On 23 August, the makers of the popular online video game revealed an incentive to help users boost their account security:… Continue reading Fortnite Says It Will Reward Users Who Enable 2FA With Free Emote
A computer criminal claims to have stolen the personal data and account information of 20,000 British pharmacy chain customers. On 21 August, certain customers of UK health and beauty retailer Superdrug received an email warning them about the “p… Continue reading Criminal Claims They Stole 20K British Pharmacy Chain Customers’ Data
Microsoft seized six fake domains that mimic the websites of prominent political organizations located in the United States. On 20 August, the Redmond-based tech giant revealed that its Digital Crimes Unit (DCU) had successfully executed a court order … Continue reading Microsoft Seized Six Fake Domains Mimicking U.S. Political Organizations
A group of digital attackers are staging a spam email campaign to target South Korean users with GandCrab v4.3 ransomware. On 7 August, researchers at Trend Micro first came across instances of the spam campaign. The attack emails arrived under the gui… Continue reading Spam Campaign Targeting South Korean Users With GandCrab v4.3 Ransomware
Sextortion scammers are now using potential targets’ redacted phone numbers in an attempt to trick them into submitting payment. Perhaps after having obtained a list that ties people’s phone numbers and email addresses together, scammers ar… Continue reading Sextortion Scams Using Redacted Phone Numbers to Demand Payment
A man received a prison sentence for his part in helping to “cash out” ransom payments made by victims of a specific ransomware family. On 13 August, the U.S. Department of Justice (DOJ) announced the sentencing of Raymond Odigie Uadiale, 4… Continue reading Man Gets Jail Time for Helping to “Cash Out” Ransomware Payments
The U.S. Department of Defense (DoD) and HackerOne together announced the creation of a new bug bounty program called “Hack the Marine Corps.” On 12 August, DoD kicked off its new vulnerability disclosure initiative at DEF CON 26 in Las Veg… Continue reading ‘Hack the Marine Corps’ Bug Bounty Program Announced by DoD
Researchers demonstrated the feasibility of taking over a enterprise network and abusing that access to exfiltrate data using just a fax number. On 12 August, Yaniv Balmas and Eyal Itkin of Check Point’s malware research team presented their find… Continue reading Researchers Showed It’s Possible to Take Over a Network With Malicious Faxes
Digital attackers targeted the computer servers of a golfers’ association with ransomware and encrypted files stored on those assets. Staff at the Professional Golfers’ Association of America (PGA) discovered the attack on 7 August. When th… Continue reading Ransomware Strikes Computer Servers of Golfers’ Association
A DevOps survey revealed that many developers have yet to take responsibility for the security of the code they produce. According to Checkmarx’s report, “Managing Software Exposure: Time to Fully Embed Security into Your Application Lifecy… Continue reading Many Developers Have Yet to Take Responsibility for Code Security, Reveals DevOps Study