On Friday, 12th of May, the world was rocked by the biggest ransomware attack in history. It started with Spain’s telecom sector, then news started coming in about British Health Service being targeted and attacks on FedEx, several Russian banks and ministries as well as many other targets in about a hundred countries across the world. The culprit? A piece of ransomware that ESET calls WannaCryptor, but also going by WannaCry and Wcrypt, has been spreading rapidly, using leaked NSA files, namely the eternalblue SMB exploit. Unlike most encrypting-type malware, this one has wormlike capabilities, allowing it to spread by itself. As a result, it…
ISBuzz Team
In response to new reports of WannaCry 2.0? New ransomware variant without kill switch emerges, Gabriel Gumbs, VP of Product Strategy at STEALTHbits Technologies commented below. Gabriel Gumbs, VP of Product Strategy at STEALTHbits Technologies: Shadow Brokers would just be joining the long line of black market 0day sellers in the so called cyber-arms market. What is novel about them is their sources, and the impact is not more exploits in the wild, the impact is arguably whether their exploit lessens the efficacy of the NSA and the other agencies that they have stolen exploits from. But, we also know those same agencies have been buying…
News broke today that one of the most popular digital signature services, DocuSign, has fallen victim to a phishing campaign which compromised a database ofcustomer emails. The company has confirmed the data breach after tracking the phishing campaign on May 9. Andrew Clarke, EMEA Director at One Identity: “The best defense is a “defense in depth” that starts with user education and includes virus protection, a next generation firewall and ends with a rigorous identity and access management program to ensure that the right users (end users and admins) have only the right access to the right things at the right…
Following the news that Disney are being held to ransom by hackers who claim they will release Pirates of the Carribean, IT security experts from ESET and SentinelOne commented below. Mark James, Security Specialist at ESET: “Anything that has a value will always be a potential victim of theft, either digital or physical. If someone has it and someone wants it then in theory there’s a market for it. The latest film to hit the headlines is the new Disney film “Pirates Of The Caribbean: Dead Men Tell No Tales”, hackers are seeking payment to stop them releasing the film before…
Both the business and technology industry are growing and making new advancements. These new improvements, such as converged systems and cloud storage systems, while strikingly beneficial, also bring with them new risks. One of the rising risks is cyber security. With many companies taking advantage of new technology and running their business online, they have become larger targets for cyber hackers. Investing in a cyber security program, whether in-house or outsourced to another company, is necessary for developing and conducting the appropriate safety measures that will ultimately protect an organization’s computer systems, networks, and confidential information. Having access to the…
Krebs On Security reported yesterday that DocuSign, a major provider of electronic signature technology, has acknowledged that a series of recent malware phishing attacks targeting its customers and users was the result of a data breach at one of its computer systems. The company stresses that the data stolen was limited to customer and user email addresses, but the incident is especially dangerous because it allows attackers to target users who may already be expecting to click on links in emails from DocuSign. Ajay Uggirala, Director at Imperva commented below. Ajay Uggirala, Director at Imperva: “The cost associated with a phishing campaigns has gone down over the…
Following the news that the suspicious emails / phishing is unlikely to be cause of the global, WannaCry cyber attack, IT security experts from Corero Network Security, Nexsan, Commvault, FalconStor, Alert Logic, Tenable Network Security, Cylance, Autotask and CTERA are commented below. Stephanie Weagle, VP at Corero: “While it is yet to be confirmed if there is a link between this ransomware attack and a DDoS attack, it is known that a DDoS attack is often a pre-cursor to a ransomware attack. Rather than launching large, volumetric attacks that cripple a website, hackers launch small, stealthy “smokescreen” attacks that are just disruptive enough to knock a firewall or intrusion…
Cybersecurity at the Speed of Business News for release, London: Infosecurity Europe, Europe’s no.1 information security event, is delighted to announce Rt Hon Lord Sebastian Coe CH KBE, president of the International Association of Athletics Federations (IAAF) and former chairman of the British Olympic Association, will deliver the show’s final opening keynote presentation on Thursday 8 June at Olympia, London. This follows the recent announcement that Dame Stella Rimington and Jeremy Paxman will deliver opening keynotes on Tuesday 6 June and Wednesday 7 June respectively. In his keynote speech, Cyber, Risk and Resilience in Sport and Business, Lord Coe will share his unique perspective on cyber risk, discuss his experience of managing risk and…
On Friday 12th May, organizations across the world were hit by a massive ransomware attack, named WannaCry, which exploited a (now patched) Microsoft Windows vulnerability revealed in the Shadowbrokers dump on March 14. Kaspersky Lab researchers have continued to track the evolution of the threat over the weekend. Evolution of the ransomware The total number of variants in circulation on Monday 11th is still unclear – but over the weekend two notable variants emerged. Kaspersky Lab does not believe any of these variants were created by the original authors – most likely they were patched by others keen to exploit the attack for their own ends.…
As many of you know, there is a ransomware attack exploding across the globe. The last headline I read estimated that 90 countries were impacted. This could be one of the biggest cybersecurity incidents we have seen to date. The impact to hospitals is catastrophic and it’s absolutely inexcusable that people’s lives are being put at risk. Seeing ransomware attacks against a hospital gets my blood boiling, and I have some choice words about it, but will refrain for now. What I do want to address is how this happened. I have seen a number of knee-jerk responses to this incident and…
