Cybercrime

Categories

Closing the chasm between cyber and CEOs

Risk is the common language that will close the knowledge and credibility chasm that frequently separates chief information security officers (CISOs) from their boards. Even in large organisations, the CISO is rarely awarded the authority granted automatically to the chief financial officer (CFO) and some other c-suite executives. But this is already starting to change as new laws on both sides of the Atlantic are making not only CISOs but also chief executive officers (CEOs) responsible by law for significant but essentially preventable cyber-breaches. The US Securities and Exchange Commission (SEC) last year is known to have notified the CFO and the CISO of SolarWinds about potential enforcement actions related to the 2020 cyberattack against the company’s Orion software platform, which the company had disclosed in a regulatory filing with the agency. This was further compounded when in October, the SEC finally charged SolarWinds and its CISO Timothy Brown with fraud and internal control failures for allegedly misleading investors about its cybersecurity practices leading up to the Sunburst attack discovered in December 2020.

Exclusive interview with top military scientist

In an exclusive interview with Cyber Intelligence, top Israeli military scientist Prof. Isaac Ben-Israel reveals that Iran has tested a missile in space that could strike the UK and assesses the likelihood and nature of a full-scale outer-space cyber war and why children should be taught cybersecurity in elementary school.

Casino Cybercrime

FBI targets casino cybercrime

The attacks first identified by the FBI frequently targeted small and tribal casinos, encrypting servers and the personally identifying information (PII) of employees and patrons. As of June 2023, the FBI also reports that the Silent Ransom Group (SRG), also called Luna Moth, conducted callback phishing data theft and extortion attacks by sending victims a phone number in a phishing attempt, usually relating to pending charges on the victim’s account. When the victims called the provided phone number, cybercriminals directed them to a legitimate system management tool via a link provided in a follow-up email.

LinkedIn accounts held for ransom in ongoing campaign

LinkedIn has become a byword for respectability and overall security. But all that has started to change, with the growing attention of cybercriminal gangs, firstly with false flags and, more recently, directly taking control of targeted individual LinkedIn accounts.

BlackCat sharpens its claws

Cybersecurity firm Coalfire reports that the ALPHV/BlackCat ransomware gang has been causing mayhem over the past year using a failsafe delivery system. The group suspects that the leaders of BlackCat are affiliated with the top ransomware gang, the infamous LockBit.

Microsoft One Drive doubles as ransomware tool

Microsoft's OneDrive includes built in ransomware detection and recovery and is marketed as a safe place to store sensitive documents. However, SafeBrach Researcher, Or Yair, was able to demonstrate its worrying capability to be used by the very criminals it was built to protect against.

Too little too late for Interpol

Interpol's latest bust may look like a victory, but critics contend that its approach is outdated, ineffective, and all too often political.

Cybercriminals Flee to China’s Dark Web

Western governments and the FBI have had a string of victories resulting in prominent Dark Web forums being taken down. However, their success may be a double-edged sword.

Lost your password?