Security News > 2020 > June

The intent of the MoU is to make it easier and more affordable for UK public sector agencies to leverage the full range of Google Cloud's services to increase innovation and deliver digital transformation. CCS, the UK Cabinet Office executive agency and trading fund, engaged Google Cloud in 2019 to discuss requirements for cloud services under the One Government Cloud Strategy, a joint initiative between Cabinet Office, CCS and Government Digital Service.

SentinelOne, the autonomous endpoint protection company, announced it has raised $200 million in Series E funding led by global venture capital and private equity firm Insight Partners, with...

Security Compass announced key additions to their management team. Nick Lantuh and Bob Ranaldi have been appointed to the Security Compass Board of Directors and are joined by new Advisor Milo Sprague.

An exhaustive inquiry published today by a consortium of investigative journalists says a three-part series KrebsOnSecurity published in 2015 on a Romanian ATM skimming gang operating in Mexico's top tourist destinations disrupted their highly profitable business, which raked in an estimated $1.2 billion and enjoyed the protection of top Mexican authorities. The multimedia investigation by the Organized Crime and Corruption Reporting Project and several international journalism partners detailed the activities of the so-called Riviera Maya crime gang, allegedly a mafia-like group of Romanians who until very recently ran their own ATM company in Mexico called "Intacash" and installed sophisticated electronic card skimming devices inside at least 100 cash machines throughout Mexico.

The Cycldek APT group has added a previously unknown malware dubbed USBCulprit to its arsenal, aimed at reaching air-gapped devices. "These documents are then transferred to USB drives connected to the system. This suggests the malware was designed to reach air-gapped machines, or those that are not directly connected to the internet or any other computer connected to internet."

Half of organizations globally have not established cybersecurity guidelines regarding remote work according to the survey and US remote employees use work devices to access adult entertainment sites more than any other country. In addition to nearly half of respondents sharing their work device with someone else in their home, 36% accessed work applications through a personal laptop or device.

Attackers were spotted targeting over one million WordPress websites in a campaign over the weekend. The campaign unsuccessfully attempted to exploit old cross-site scripting vulnerabilities in WordPress plugins and themes, with the goal of harvesting database credentials.

A phishing email claims to send the recipient to a VPN configuration page for home access but instead leads them to a credential-stealing site, said Abnormal Security. Cybercriminals have been keen to exploit COVID-19 to create coronavirus-related malicious apps, phony websites, and phishing emails.

Sensory, a speech and biometrics recognition provider, announced a modification to its TrulySecure platform that recognizes users wearing face masks. TrulySecure is the company's face and voice biometric fusion platform has previously been able to authenticate device users via facial recognition, and was previously unable to verify individuals wearing protective face coverings.

Google has been sued for billions of dollars in a proposed class action alleging the adtech company identified and tracked users who adopted its browser's incognito mode to avoid such tracking. The complaint, filed in Northern California yesterday [PDF], claims that through a combination of means ranging from "Google Analytics, Google Ad Manager, and various other application and website plug-ins", the adtech company has identified individuals' IP addresses, "What the user is viewing, what the user last viewed, and details about the user's hardware" while they were in incognito mode.