Security News > 2020 > September

When the ICO handed IT Protect Ltd a "Monetary penalty notice" back in 2017 for making nuisance sales phone calls, it appears few were expecting the chain of events set off by the fine. Insolvency and Companies Court Judge Sally Barber ordered Warren Pye to repay a total of £114,508, revealing in a detailed judgment handed down on 25 September how Bognor Regis-based IT Protect Ltd simply ignored its 2017 fine and continued funnelling cash to its director, his partner, and his brother even after the ICO secured a winding-up order against the firm.

IT asset and service management solutions provider Ivanti on Monday announced the acquisition of MobileIron and Pulse Secure. A portfolio company of Clearlake, Ivanti discovers IT assets, improves delivery of IT services, and leverages insights and automation to reduce risks across PCs, mobile devices, data centers, and VDI. Furthermore, it helps organizations improve delivery through modern technology both in the warehouse and across the supply chain.

Threat actors are expected to spread false information regarding hacked voter information and voting systems, the Federal Bureau of Investigation and the Cybersecurity and Infrastructure Security Agency say in an alert. At the time, the agencies noted that disinformation campaigns might leverage websites, social media, and other venues to disseminate false information about voter suppression, cyber-attacks on election infrastructure, fraud, and other issues.

A registration statement filed by McAfee on Monday with the U.S. Securities and Exchange Commission shows that the company is planning on returning to public markets. In its SEC filing, McAfee listed the offering size at $100 million, but Renaissance Capital research analysts say the amount is likely a placeholder and they estimate that the deal could help the company raise up to $2 billion.

Telemedicine is enjoying a healthy boom, as more doctors, clinics and hospitals reduce in-person risks associated with COVID-19. The percentage today has leveled off to 21 percent, after peaking at 69 percent earlier this year, according to Epic Health Research.

The attack involved ransomware - Ryuk ransomware, to be more specific. Ryk extension and another employee described a ransom note that points to Ryuk ransomware.

As a thought experiment, Martin Hron, a researcher at security company Avast, reverse engineered one of the older coffee makers to see what kinds of hacks he could do with it. Specifically, he could trigger the coffee maker to turn on the burner, dispense water, spin the bean grinder, and display a ransom message, all while beeping repeatedly.

Human rights organization Amnesty International has identified new macOS and Linux-targeting variants of the infamous FinFisher-made spyware family FinSpy. While diving deeper into the use of FinSpy by a hacking group dubbed NilePhish, which is believed to be state sponsored, Amnesty International discovered previously unknown samples targeting Linux and macOS, along with an infrastructure to distribute the Windows variant of the spyware disguised as an Adobe Flash Player installer.

No matter the legal reasoning, an "Adequacy" decision to let data flow between the UK and the EU will hinge on the ups and downs of the wider Brexit negotiations, which are entering a tense final phase. At the end of the Brexit transition period, when business-as-usual trading with the EU will come to an end and the UK begins dealing with the world's largest trading bloc on new terms, the EU will need to decide whether the new UK data rules are sufficiently aligned with GDPR and allow the uninterrupted transfer of personal data from the EU to the UK. Such a decision of "Adequacy" in the relationship with EU data law is said to be important to the UK working as a successful digital economy.

Universal Health Services over the weekend shut down the IT networks at multiple hospitals in the United States, after being hit with a cyberattack. On Monday, some of the company's employees took to Reddit to share information on a cyberattack that forced the shutdown of computers at UHS facilities nationwide.