The City and County of Durham, North Carolina shut down networks following a cyberattack by the Ryuk Ransomware. The county and city was victim to a phishing attack that led to the deployment of the ransomware on their systems.
ISBuzz Team
It was announced today that a third-party app used by EU merchants on Amazon UK, Ebay and Shopify was found to have exposed 8 million sales records containing customers’ personal data.
New Tessian report reveals that perceptions around cybersecurity industry need to change to encourage more diversity Increasing the number of women working in cybersecurity could boost the UK economy by £12.6 billion according to a new report from Tessian, the human layer security company. The report also reveals that closing the 24% gender pay gap in the UK cybersecurity industry, and equalizing women’s salaries to men’s, could add a further £4.4 billion to the UK economy. Tessian highlights the importance of encouraging more women into cybersecurity and identifies the barriers stopping this from happening. After surveying female cybersecurity professionals in the UK…
Twitter has used its new “manipulated media” tag for the first time on an edited video of a speech by Joe Biden, according to BBC News. The tag, introduced on 5 March, tells readers when a picture or video has been “significantly altered or fabricated”. The footage was posted by by Dan Scavino, White House director of social media, and seemed to show Biden calling for people to vote for President Trump.
It was recently reported that government-backed groups are exploiting CVE-2020-0688 to take over Exchange email servers. The exploitation attempts were first spotted by UK cyber-security firm Volexity on Friday and confirmed today to ZDNet by a source in the DOD.
Ryuk Ransomware by way of phishing was the culprit behind the Durham, NC cyberattack that ultimately caused the city to shut down its network and disabled the first responders’ systems. Although this ransomware is made up of complicated code, the severity of the attack ultimately came down to the fault of a click. Durham is just another example of people having bad digital safety habits, or lack of education. Even the most sophisticated software cannot help your system if someone welcomes a hacker through the front door.
When events like the outbreak of Covid-19 become projected on a global audience, cybercriminals try to exploit fear and uncertainty for financial gain. This is nothing new, with the FBI warning of phishing scams associated with Hurricane Katrina all the way back in 2005. Inevitably, malicious links posing as health advice have been popping up. There are however certain steps that people can take to mitigate against these attacks.
Google has rolled out an update for its two-factor physical security keys for protecting Google Accounts that makes it easier to enroll the keys on Android and macOS devices. Google users can register the security keys on Android devices running Android 7.0 “N” and newer using Chrome version 70 and up. The keys can also be registered on macOS devices using Safari version 13.0.4 and newer, ZDNet reported this morning.
Facebook has removed some deceptive ads from the Trump campaign after first allowing them. When criticism arose, Facebook took down the ads saying they were misleading about the US Census. Facebook is also taking heat for other ads that are not clearly attributable to reputable ad sources according to a study by researchers at New York University’s Tandon School of Engineering as reported in an article in the Washington Post.
As reported by BBC News, a Virgin Media database containing the personal details of 900,000 people was left unsecured and accessible online for 10 months, the company has admitted. The information was accessed “on at least one occasion” by an unknown user. The database, which was for marketing purposes, contained phone numbers, home and email addresses. It did not include passwords or financial details. The breach was not due to a hack or a criminal attack, but because the database had been “incorrectly configured” by a member of staff not following the correct procedures, Virgin Media said.