Pitney Bowes, a $3 billion by revenue e-commerce and shipping technology provider, has been hit by ransomware for the second time in six months. The security incident was disclosed yesterday after the Maze ransomware group claimed online that it was able to breach and encrypt the company’s network. https://twitter.com/campuscodi/status/1259794764985180160
ISBuzz Team
Organisations could find themselves doubling the cost of clearing up after a ransomware attack if they pay off cybercriminals. According to a new survey for Sophos’ State of Ransomware 2020 report, the average cost of tackling the effect of such an attack, including business downtime, lost orders, operational costs, and more, but not including the ransom, was more than US$ 730,000 (£593,000). This average cost rose to us$1.4 million (£1.1 million), almost twice as much, when organisations paid the ransom.
Ironically, the database for the defunct hacker forum and data breach marketplace called WeLeakData.com is being sold on the dark web and exposes the private conversations of hackers who used the site. WeLeakData.com was a hacker forum and marketplace that primarily focused on discussing, trading, and selling databases stolen during data breaches and combolists that are used in credential stuffing attacks.
As reported by Variety, major media and entertainment law firm Grubman Shire Meiselas & Sacks said that after its internal data systems were hacked — and a vast trove of information on its clients was stolen — it has informed its roster of A-list clients of the breach. “We can confirm that we’ve been victimized by a cyberattack,” the New York-based firm said in a statement to Variety. “We have notified our clients and our staff. We have hired the world’s experts who specialize in this area, and we are working around the clock to address these matters.” News of the hack surfaced last…
Over the past year, the Astaroth infostealer trojan has evolved into one of today’s stealthiest malware strains, containing a slew of anti-analysis and anti-sandbox checks to prevent security researchers from detecting and analysing its operations. The malware has historically targeted Brazilian users ever since it was first spotted in the wild in September 2018. IBM researchers were the first ones to detect and analyse the malware, followed by Cybereason, and then Microsoft, which analysed its evolution across two separate blog posts, in July 2019 and March 2020. Astaroth now uses YouTube channel descriptions to hide the URL for its command…
The US government today released a list of the top 10 security vulnerabilities routinely exploited by foreign cyber actors between 2016 and 2019. Cybersecurity and Infrastructure Security Agency (CISA) and the FBI issued the CVEs alert through the National Cyber Awareness System of the DHS to advise security professionals to prioritize patching these vulnerabilities to help reduce the risk of foreign threats.
A hacking group known as ShinyHunters has put up a huge cache of stolen user details online, according to TechRadar. The hackers were able to steal the data of over 73 million users from various websites, including online dating app Zoosk and printing service Chatbooks, which is now up for sale for approximately $18,000 on underground marketplaces. The group was also behind the recent attack on the Indian online learning platform Unacademy, stealing a database of over 22 million users that was listed online for $2,000. Chatbooks has advised its users to update their login credentials for the service.
ChatBooks photo print service has informed its customers that user information was stolen from their systems following a cyber attack. Data consisting of 15 million user records is now being offered for sale on the dark web. This breach is part of a spree of leaks from a group of hackers that is now selling over 73 million user records from 11 companies. These records include email addresses, hashed passwords (SHA-512), social media access tokens, and personally identifiable information. Additionally, for a small portion of the affected records, some phone numbers, FacebookIDs, and inactive social media access and merchant tokens were…
Following the news around researchers finding a major bug in the Thunderbolt ports made by Intel and found in millions of PC’s, chief security scientist commented below as part of our expert commenting series.
In response to reports that indicate a hacker group named ShinyHunters is selling over 73 million user records from 11 companies on the dark web, a cybersecurity expert offers perspective.