Fake Android apps uploaded to Play store by notorious Sandworm hackers

The Russian ‘Sandworm’ hacking group has been caught repeatedly uploading fake and modified Android apps to Google’s Play Store. Continue reading Fake Android apps uploaded to Play store by notorious Sandworm hackers

ICS Attackers Set To Inflict More Damage With Evolving Tactics

While it remains difficult to attack critical infrastructure successfully, adversaries aim to use past experience to launch more destructive future attacks, according to analysis. Continue reading ICS Attackers Set To Inflict More Damage With Evolving Tactics

Shareholders allege FedEx covered up damages caused by NotPetya attack

FedEx shareholders are accusing the company’s executives of failing to disclose the full extent of the NotPetya ransomware attack while also selling tens of millions of dollars worth of their own stock in the company, according to a lawsuit filed last week. Stock owners filed a lawsuit on Sept. 17 alleging that FedEx brass provided “materially false and misleading statements” about the ransomware attack that locked up systems at company subsidiary TNT Express more than two years ago. NotPetya wreaked havoc on corporate giants including Maersk, the British advertising firm WPP and the pharmaceutical conglomerate Merck. The White House blamed Russia for the attack, which caused more than $10 billion in damages and spurred a number of high profile lawsuits in the private sector. In this case, the suit alleges FedEx failed to inform its shareholders that TNT Express customers were abandoning the company in favor of other logistics providers […]

The post Shareholders allege FedEx covered up damages caused by NotPetya attack appeared first on CyberScoop.

Continue reading Shareholders allege FedEx covered up damages caused by NotPetya attack

Investors accuse FedEx of lying, stock dumping after NotPetya attack

This is the second such suit, with shareholders asking why execs sold $40m+ of their shares while downplaying the ransomware attack. Continue reading Investors accuse FedEx of lying, stock dumping after NotPetya attack

Demand for cyber insurance grows as volatility scares off some providers

There’s at least one part of the financial sector where hackers are good for business. Direct cyber insurance premiums grew to $2 billion last year, up 26 percent since 2015, according to figures published July 25 by Moody’s Investors Service. That figure represents less than 1 percent of premium insurance revenue in the U.S., but it’s clear the increasing claims over the past three years are driven largely by concerns about data breaches, distributed denial-of-service attacks and, perhaps most notably, ransomware. The problem, despite all the demand, is that some insurers are now re-thinking whether it’s in their best interest to keep offering the plans that help clients recover from devastating cyberattacks. Swiss Re Americas, a reinsurer that primarily backs governments and other insurance companies, is reluctant to embrace the cyber insurance market because of unpredictable, and expensive, attacks like the 2017 NotPetya incident, which the White House said caused $10 billion in […]

The post Demand for cyber insurance grows as volatility scares off some providers appeared first on CyberScoop.

Continue reading Demand for cyber insurance grows as volatility scares off some providers

Firmware Bugs Plague Server Supply Chain, 7 Vendors Impacted

Lenovo, Acer and five additional server manufacturers are hit with supply-chain bugs buried in motherboard firmware. Continue reading Firmware Bugs Plague Server Supply Chain, 7 Vendors Impacted

Jamil Jaffer Chats about the Value of Sharing Threat Intelligence for Better Cybersecurity

Inner Circle Podcast Episode 030 My guest for this episode of the Inner Circle podcast is Jamil Jaffer, Vice President for Strategy & Business Development at IronNet Cybersecurity. We discuss a recent report from IronNet–Collective Offense Ca… Continue reading Jamil Jaffer Chats about the Value of Sharing Threat Intelligence for Better Cybersecurity

One Million Devices Open to Wormable Microsoft BlueKeep Flaw

Researchers have discovered one million devices that are vulnerable to a “wormable” Microsoft flaw, which could open the door to a WannaCry-like cyberattack. Continue reading One Million Devices Open to Wormable Microsoft BlueKeep Flaw

Baltimore city ransomware attack is powered by stolen NSA hacking tool

By Uzair Amir
This time the hacking tool being used is EternalBlue. The New York Times has reported that the recent ransomware attacks in major US cities specifically Baltimore are closely linked together due to the fact that the key component in all t… Continue reading Baltimore city ransomware attack is powered by stolen NSA hacking tool

Eternalblue | The NSA-developed Exploit That Just Won’t Die

With over a million internet-connected devices still vulnerable to the Eternalblue exploit, we explain how it works and how to protect your Windows fleet.
The post Eternalblue | The NSA-developed Exploit That Just Won’t Die appeared first on Security B… Continue reading Eternalblue | The NSA-developed Exploit That Just Won’t Die