It has been reported that BancoEstado, one of Chile’s three biggest banks, was forced to shut down all branches yesterday following a ransomware attack that took place over the weekend. “Our branches will not be operational and will remain closed today,” the bank said in a statement published on its Twitter account on Monday. Details about the attack have not been made public, but a source close to the investigation told ZDNet that the bank’s internal network was infected with the REvil (Sodinokibi) ransomware. The incident is currently being investigated as having originated from a malicious Office document received and…
ISBuzz Team
Research has found that phones for low-income users have been hacked before they’re turned on, according to CNET. Devices paid for by the federally funded Lifeline program, established to ensure that people on low incomes can stay connected to vital services via phone and email, have been subject to an endless barrage of pop-up ads. Not only do these make the phones virtually unusable, but they also siphon off the data paid for with federal subsidies. The settings and update apps on each phone contained code that allowed them to load malicious apps known as adware.
Millions of WordPress sites are facing attacks following the discovery of a security flaw in a popular plugin, according to TechRadar. Researchers at security firm Defiant have warned that the File Manager plugin used by hundreds of thousands of WordPress sites has a zero-day vulnerability, allowing hackers to launch attacks on users. This flaw could allow attackers to upload malicious files onto WordPress sites that have not updated with the latest version of File Manager. Defiant, which operates the web firewall service Wordfence, says it has recorded attacks against 1.7 million sites since the vulnerability was first exploited, with 11…
As reported by Sky NewsSky News, Newcastle University is being held to ransom by cyber criminals in an attack which has been disrupting IT systems since the beginning of the month. The cyber crime group behind the attack – known as DoppelPaymer – previously leaked documents online relating to Elon Musk’s companies SpaceX and Tesla. The criminals have posted stolen files from the university online and are threatening to release more, exposing student and staff data unless they receive a ransom payment, according to a post on Twitter and their darkweb site. The university says it has alerted the UK’s…
The sad reality is that organizations that don’t use multi-factor authentication (MFA) are open to attack when their employees share passwords or fall for phishing scams. So, how can you explain the reluctance in adopting MFA? Compromised login credentials are one of the biggest security threat to companies today. The reason is that the attacker is using valid credentials, even though they are stolen. Keeping that in mind, why would any of your security tools detect anything suspicious? IS Decisions’ research into the access security priorities of 500 IT Security Managers in the US and UK Despite this well-known threat,…
It is very well known that Active Directory credentials can be compromised quite easily. It is therefore vital for companies to better secure those credentials in order to avoid a network breach. Active Directory – One Identity Source for all Access Today, 90% of companies still rely on Active Directory as the primary source of trust for identity and access. Developed by Microsoft for Windows domain networks, Active Directory provides ‘authentication services’ to verify the user is who they say they are, ‘authentication and authorization’ to access resources on the network and ‘group policy processing’ to enforce security settings across…
Cybersecurity experts commented below on the Ransomware attack on Argentina federal agency. https://twitter.com/Webridge_Comm/status/1302778876284657664
More than 180,000 New South Wales residents in Australia are believed to have been caught up in a major cyber security breach after a state government department was compromised earlier this year, according to ABC NewsABC News. This breach was reported in May but today it confirms number of people affected by the breach. Expert below reacted on this new.
2020 has seen hackers continuing to evolve their cyber-attack techniques, employing cynical new methods to extort money from victims. By understanding the latest phishing trends, organisations will be able to adapt and take measures to mitigate risk in the developing cyber threat landscape. When we look back at the early days of phishing emails, they can seem almost impossibly quaint. The world we lived in a decade ago was far less cyber security-aware, and hackers were often able to extort money from victims through grammatically challenged phishing emails telling tall tales of long-lost relatives and wealthy princes. Fast-forward to 2020,…
The majority of IT departments are underestimating the maturity of their vulnerability remediation programs by a wide margin, according to a study from Vulcan Cyber. The company said it was surprised that most organizations think that they are much further along in their work in patching known vulnerabilities yet they have barely begun the work required. “What caught us off guard was that the vast majority of respondents felt their programs were already mature,” said Yaniv Bar-Dayan, co-founder and CEO of Vulcan. “Given the amount of breaches caused by known, unpatched vulnerabilities, we discovered a surprising disconnect that merits a closer look.”…