Security News > 2021 > May

Scammers use fake 'unsubscribe' spam emails to confirm valid email accounts to be used in future phishing and spam campaigns. For some time, spammers have been sending emails that simply ask if you wish to unsubscribe or subscribe.

The White House says it believes U.S. government agencies largely fended off the latest cyberespionage onslaught blamed on Russian intelligence operatives, saying the spear-phishing campaign should not further damage relations with Moscow ahead of next month's planned presidential summit. The revelation of a new spy campaign so close to the June 16 summit between President Joe Biden and Russian counterpart Vladimir Putin adds to the urgency of White House efforts to confront the Kremlin over aggressive cyber activity that criminal indictments and diplomatic sanctions have done little to deter.

The Interpol has intercepted $83 million belonging to victims of online financial crime from being transferred to the accounts of their attackers. Between September 2020 and March 2021, law enforcement focused on battling five types of online financial crimes: investment fraud, romance scams, money laundering associated with illegal online gambling, online sextortion, and voice phishing.

New TSA security directive is a needed shock to the systemThe Department of Homeland Security's Transportation Security Administration announced a Security Directive that will enable the Department to better identify, protect against, and respond to threats to critical companies in the pipeline sector. VMware fixes critical vCenter Server RCE vulnerability, urges immediate actionVMware has patched two vulnerabilities affecting VMware vCenter Server and VMware Cloud Foundation and is urging administrators to implement the offered security updates as soon as possible.

Western Digital announced its new embedded flash platform for Universal Flash Storage 3.1 to enable new applications in mobile, automotive, IoT, AR/VR, drones and other emerging segments that are reshaping the way we live, work and play. In an increasingly mobile world of always on, always connected and always available, Western Digital's unique UFS 3.1 platform, based on the JEDEC-compliant UFS 3.1 specification, provides the speed, reliability and feature versatility that customers count on to build small, thin and lightweight solutions.

Ignition Technology announced a partnership with Siemplify as its exclusive distributor to bring the leading independent provider of security orchestration, automation and response technology to a growing MSSP community across the UK. Siemplify is redefining security operations for MSSPs worldwide through its innovative platform that helps security teams manage their operations and respond to cyber threats with speed and precision. The Siemplify SOAR platform combines security orchestration, automation, and response with end-to-end security operations management to make analysts and security engineers more productive.

Atos and Thales announce the creation of Athea, a joint venture that will develop a sovereign big data and artificial intelligence platform for public and private sector players in the defence, intelligence and internal state security communities. Athea will draw on the experience gained by both companies from the demonstration phase of the ARTEMIS programme, the big data platform of the French Ministry of Armed Forces.

Booz Allen Hamilton announced it is partnering with Databricks to drive business value by unifying data and artificial intelligence to meet federal agencies' data challenges and advance their missions. Booz Allen is the largest provider of AI services for the federal government and already delivers some of the most advanced AI, machine learning and data architecture solutions through its work with the Joint AI Center, Army Futures Command, and Veterans Benefits Administration, among other defense, civilian and intelligence agencies.

A Walmart phishing campaign is underway that attempts to steal your personal information and verifies your email for further phishing attacks. A new email phishing campaign pretends to be from Walmart with a subject line of "Your Package delivery Problem Notification lD#" stating that they could not deliver your package because your address is incorrect.

Microsoft states that a Russian hacking group used four new malware families in recent phishing attacks impersonating the United States Agency for International Development. In a second blog post released Friday night, Microsoft provides details on four new malware families used by Nobelium in these recent attacks.