Collaborate Disseminate
This is the one year anniversary of NotPetya. It was probably the most expensive single hacker attack in history (so far), with FedEx estimating it cost them $300 million. Shipping giant Maersk and drug giant Merck suffered losses on a similar scale. M… Continue reading Lessons from nPetya one year later
This is the one year anniversary of NotPetya. It was probably the most expensive single hacker attack in history (so far), with FedEx estimating it cost them $300 million. Shipping giant Maersk and drug giant Merck suffered losses on a similar scale. M… Continue reading Lessons from nPetya one year later
Britain’s top prosecutor says that countries need to work together to determine the identity of attackers behind cross-border cyberattacks. In a Wednesday speech at the Royal Institute of International Affairs, a British think tank, U.K. Attorney General Jeremy Wright made the case that the world needs to do more to make sure that international law is enforced when it comes to cybercrime. To that end, he argued that the U.K. and its allies should make attribution a priority. “Cyberspace is not – and must never be – a lawless world. It is the U.K.’s view that when states and individuals engage in hostile cyber-operations, they are governed by law just like activities in any other domain,” Wright said. “The question is not whether or not international law applies, but rather how it applies and whether our current understanding is sufficient.” In his speech, Wright went at length to legally justify […]
The post U.K. attorney general: Allies must collaborate on attribution of international cyberattacks appeared first on Cyberscoop.
The actors behind this kind of code, whether they’re bent on sending a political message or simply wanting to cover their tracks after data exfiltration, have adopted various techniques to carry out those activities. Continue reading Secrets of the Wiper: Inside the World’s Most Destructive Malware
In its newest yearly report, cybersecurity giant Symantec says internet-connected devices are becoming an attractive target for hackers looking to hijack processing power to mine cryptocurrency. The Internet Security Threat Report, which looks back on threat trends for 2017, states cryptojacking — co-opting unsuspecting users’ CPU power to mine cryptocurrency — was one of the biggest growth areas in cybercrime last year. Combine that threat with an overall increase in attacks on devices that make up the Internet of Things, and there is now a wide new target for criminals to potentially exploit for financial gain. “Symantec already found a 600 percent increase in overall IoT attacks in 2017, which means that cyber criminals could exploit the connected nature of these devices to mine en masse,” the report says. The company has seen some instances of connected devices being used to mine for cryptocurrency, according to Kevin Haley, director of Symantec Security Response. He anticipates growing […]
The post Symantec: Look for cryptojacking to tie into IoT devices appeared first on Cyberscoop.
Continue reading Symantec: Look for cryptojacking to tie into IoT devices
Russia has been accused of so many things recently, it’s easy to lose track. Now we can add cyber-intrusion and more to the list. Continue reading Russia accused of burrowing into US energy networks
On Thursday, the U.S. government imposed sanctions against five entities and 19 individuals for their role in “destabilizing activities” ranging from interfering in the 2016 U.S. presidential election to carrying out destructive cyber-attac… Continue reading Weekly Cyber Risk Roundup: Russia Sanctions, Mossack Fonseca Shutdown, Equifax Insider Trading
The Trump administration announced Thursday sanctions against Russian entities for a multitude of actions, including meddling in the 2016 presidential election, the NotPetya attack and persistent attempt to break into the U.S. energy grid. The U.S. Department of the Treasury’s Office of Foreign Assets Control (OFAC) sanctioned five entities and 19 individuals with ties to the Kremlin, including high-ranking officials in Russia’s Federal Security Service (FSB) and Main Intelligence Directorate (GRU). “The administration is confronting and countering malign Russian cyber activity, including their attempted interference in U.S. elections, destructive cyber-attacks, and intrusions targeting critical infrastructure,” said Treasury Secretary Steven Mnuchin. “These targeted sanctions are a part of a broader effort to address the ongoing nefarious attacks emanating from Russia.” Senior administration officials say that a number of those sanctioned are responsible for attempts to breach industrial control systems tied to the U.S. energy grid. Officials say attackers conducted a “multi-stage campaign” […]
The post U.S. sanctions Russia over attempts to hack energy grid, NotPetya appeared first on Cyberscoop.
Continue reading U.S. sanctions Russia over attempts to hack energy grid, NotPetya
Another U.S. software company has disclosed its losses due to the infamous NotPetya cyberattack. Nuance Communications — a U.S. computer software company that provides applications for speech and imaging to financial and healthcare companies — is claiming that the June 2017 attack cost the company $98 million in lost revenue. Nuance also said that its expecting more losses from the cyberattack this year. The Burlington, Massachusetts-based company disclosed information about its losses in a 10-Q filing with the Securities and Exchange Commission (SEC). In the filing, the company says the attack mainly affected healthcare companies using its software for transcription services and order processing. The company expects to lose more revenue this year when it enhances and upgrades its cybersecurity software, while still providing additional resources to its health companies. “For fiscal year 2017, we estimate that we lost approximately $68.0 million in revenues, primarily in our Healthcare segment, due to the service disruption […]
The post Nuance Communications says NotPetya attack has cost it $98 million since June appeared first on Cyberscoop.
Continue reading Nuance Communications says NotPetya attack has cost it $98 million since June
Another U.S. software company has disclosed its losses due to the infamous NotPetya cyberattack. Nuance Communications — a U.S. computer software company that provides applications for speech and imaging to financial and healthcare companies — is claiming that the June 2017 attack cost the company $98 million in lost revenue. Nuance also said that its expecting more losses from the cyberattack this year. The Burlington, Massachusetts-based company disclosed information about its losses in a 10-Q filing with the Securities and Exchange Commission (SEC). In the filing, the company says the attack mainly affected healthcare companies using its software for transcription services and order processing. The company expects to lose more revenue this year when it enhances and upgrades its cybersecurity software, while still providing additional resources to its health companies. “For fiscal year 2017, we estimate that we lost approximately $68.0 million in revenues, primarily in our Healthcare segment, due to the service disruption […]
The post Nuance Communications says NotPetya attack has cost it $98 million since June appeared first on Cyberscoop.
Continue reading Nuance Communications says NotPetya attack has cost it $98 million since June