CenturyLink’s Black Lotus Labs warns organizations of credit card theft DENVER, July 1, 2020 – Point-of-Sale (POS) malware is nothing new, and the Alina malware – which cybercriminals use to scrape credit card numbers from POS systems – has been around many years. New intelligence from CenturyLink’s Black Lotus Labs, however, revealed that criminals are not yet done with Alina, and they continue to find new ways to use it to steal unsuspecting victims’ credit- and debit card data. The theft was discovered after one of Black Lotus Labs’ machine-learning models flagged unusual queries to a specific domain in May…
ISBuzz Team
The computer engineering student Ata Hakçıl analyzed username and password combinations used in data breaches at various companies found out that one in 142 passwords leaked in data breaches is “123456.”. In one of the biggest password re-use studies of its kind, an analysis of more than one billion leaked credentials has discovered that one out of every 142 passwords is the classic “123456” string. This poor cyber hygiene, combined with the recently-reported increases in cyberattacks and the likelihood that remote work will be prolonged due to the COVID-19 pandemic is a sign that organizations of all sizes are more…
The infamous TrickBot trojan has started to check the screen resolutions of victims to detect whether the malware is running in a virtual machine. When researchers analyze malware, they typically do it in a virtual machine that is configured with various analysis tools. Due to this, malware commonly uses anti-VM techniques to detect whether the malware is running in a virtual machine. If it is, it is most likely being analyzed by a researcher or an automated sandbox system. These anti-VM techniques include looking for particular processes, Windows services, or machine names, and even checking network card MAC addresses or CPU features.
Following the enforcement of the California Consumer Privacy Act (CCPA) today, Darren Wray, CTO offers the following comment.
US Cyber Command said today that foreign state-sponsored hacking groups are likely to exploit a major security bug disclosed today in PAN-OS, the operating system running on firewalls and enterprise VPN appliances from Palo Alto Networks. The CVE-2020-2021 vulnerability is one of those rare security bugs that received a 10 out of 10 score on the CVSSv3 severity scale. A 10/10 CVSSv3 score means the vulnerability is both easy to exploit as it doesn’t require advanced technical skills, and it’s remotely exploitable via the internet, without requiring attackers to gain an initial foothold on the attacked device. In short,…
IBM’s recent announcement of its 5th annual Cyber Resilient Organization Report, conducted by the Ponemon Institute. Key findings from the report: More orgs (26%) have adopted formal, enterprise-wide security response plans over the past 5 years, compared to 18% of respondents in 2015. Amongst those with a formal security response plan, only 1/3 (17% of respondents) had also developed specific playbooks for common attack types. The # of security tools used has a negative impact; orgs that use 50+ security tools ranked themselves 8% lower in their ability to detect, and 7% lower in their ability to respond to an attack, compared to those with less tools. Over the past…
In response to reports that Roblox accounts are targeted by a hacking campaign supporting President Trump for the upcoming November U.S. Presidential elections, a cybersecurity expert offers perspective.
According to London-based international law firm Linklaters, GDPR data breach notifications on the rise across Europe, study finds – Linklaters analysis shows 66% rise in notifications over the past year despite fall in the UK Across major European markets there has been an average increase of data breach notifications of 66% compared to Y1 of the GDPR.
Cybersecurity is one of the most widely discussed topics in the world of technology today. Despite security solutions being constantly developed and improved, small businesses (SMBs) and home office workers (SOHOs) remain largely unprepared for a potential data breach or cyberattack. Furthermore, small businesses often believe they are too small to be the targets of cyberattacks. But the fact of the matter is, around a quarter of SMBs and SOHOs do not have any cybersecurity strategies in place, so are one of the primary targets for cybercriminals as a result. And with home working becoming a necessity for most organisations,…
Security researchers have discovered this week a new ransomware strain targeting macOS users. Named OSX.EvilQuest, this ransomware is different from previous macOS ransomware threats because besides encrypting the victim’s files, EvilQuest also installs a keylogger, a reverse shell, and steals cryptocurrency wallet-related files from infected hosts. “Armed with these capabilities, the attacker can main full control over an infected host,” said Patrick Wardle, Principal Security Researcher at Jamf. This means that even if victims paid, the attacker would still have access to their computer and continue to steal files and keyboard strokes. Full story here: https://www.zdnet.com/article/new-evilquest-ransomware-discovered-targeting-macos-users/