Weekly #cybersecurity digest to your inbox

IT exec sets up fake biz, uses it to bill his bosses $6m for phantom gear, gets caught by Microsoft Word metadata

And now he faces up to 20 years in the slammer A now-former senior IT exec has admitted conning his employer out of $6m – by setting up a fake tech services biz that billed his bosses for bogus services.…

Go to article at

15.5.2020

Insider Attacks

Mysterious New Ransomware Targets Industrial Control Systems

Now, a malware sample has surfaced that uses specific knowledge of control systems to target them with a far blunter, and more familiar, tactic: Kill the target's software processes, encrypt the underlying data, and hold it hostage. Over the last month, researchers at security firms including Sentinel One and Dragos have puzzled over a piece of code called Snake or EKANS, which they now believe is specifically designed to target industrial control systems, the software and hardware used in everything from oil refineries to power grids to manufacturing facilities. But EKANS also uses another trick to ratchet up the pain: It's designed to terminate 64 different software processes on victim computers, including many that are specific to industrial control systems. EKANS is actually the second ransomware to hit industrial control systems. According to Dragos, another ransomware strain known as Megacortex that first appeared last spring included all of the same industrial control system process-killing features, and may in fact be a predecessor to EKANS developed by the same hackers.

Go to article at

15.5.2020

Ransomware

Hackers are using the COVID-19 pandemic to spread malware

Several cybersecurity firms are reporting an uptick in attacks against a range of targets, all using the ongoing COVID-19 pandemic as a hook to hoodwink their victims into running malware.

Go to article at

15.5.2020

Malware

Trello exposed! Search turns up huge trove of private data

A surprising number of users seem to be setting Trello boards, and their often highly sensitive content, to ‘public’.

Go to article at

15.5.2020

Employee Negligence

HPE Acquires Identity Management Firm Scytale

Hewlett Packard Enterprise (HPE) on Monday announced that it has acquired Scytale, an identity management startup that specializes in cloud-native security and zero trust networking. read more

Go to article at

15.5.2020

Outdated Access Rights

Tracking GDPR Fines

GDPR fines are occurring at an increasing frequency. This GDPR fines tracking tool lists details for both completed fines and ongoing cases for uses as a research aid.

Go to article at

15.5.2020

Illegal Personal Data Processing

How can we screw up incident response? Let me count the ways — Monday UK Edition

This week, DataBreaches.net was reminded yet again of the risks of trying to alert an entity to a breach. This time, it was...

Go to article at

15.5.2020

Violations of Data Subject Rights

Social Engineering Based on Stimulus Bill and COVID-19 Financial Compensation Schemes Expected to Grow in Coming Weeks

Go to article at

15.5.2020

Phishing

Social isolation is a risk factor for scam loss

The coronavirus crisis is forcing people to distance themselves from others, work remotely, and spend time indoors and online. While social distancing is a good health practice to reduce the spread of the coronavirus, it may be helping scammers. Research from the Better Business Bureau (BBB), the FINRA Investor Education Foundation, and the Stanford Center on Longevity found that people are more likely to lose money to a scam when they are socially or physically … More → The post Social isolation is a risk factor for scam loss appeared first on Help Net Security.

Go to article at

15.5.2020

Phishing