Security News > 2021 > May

Organizations in the aerospace and travel sectors have been targeted in the past months in a campaign aimed at infecting victims with remote access Trojans and other types of malware, Microsoft warns. The attacks start with spear-phishing messages that employ lures relevant to the targeted organizations, such as aviation, travel, and cargo, and deliver an image that pretends to be a PDF file and which contains an embedded link.

AI officially launched on Thursday with a security investigations platform and $4.6 million in seed funding. AI says it will be used to accelerate adoption of its product.

Automation can't be just about running the process, but must include three important stages. New product categories have emerged to tackle the automation challenge, including Security Orchestration, Automation and Response platforms and tools and Extended Detection and Response solutions.

In February 2021, Keeper surveyed 1,000 employees in the U.S. about their work-related password habits - and discovered that a lot of remote workers are letting password security go by the wayside. Here are 5 critical password security rules they're ignoring.

U.K. Foreign Secretary Dominic Raab on Wednesday urged global cooperation to combat cyberattacks by "Hostile state actors" and criminal gangs. Raab also pledged 22 million pounds in support to "Vulnerable" countries in Africa and the Indo-Pacific to improve their digital defense capacity.

Stricken US bulk hydrocarbon conveyor Colonial Pipeline advertised for a new cybersecurity manager a month before that ransomware attack forced operators to shut down the pipeline as a pre-emptive safety measure. The job advert came to light in the wake of the ransomware attack, which shut down one of America's largest pipelines on Friday 7 May. "Employees find exciting opportunities to grow and develop their careers at a stable company which offers a generous compensation and benefits package that includes annual incentive bonuses, retirement plans, insurance coverage and a host of other features that support a happy, active, productive and rewarding life," says the advertisement.

In the wake of the DarkSide cyberattack, President Biden signed an executive order Wednesday aimed at bolstering the federal government's cyber defenses as the administration juggles a number of digital attacks including SolarWinds and last week's ransomware incident against a major fuel pipeline causing lasting gas shortages. As of 5 p.m. on Wednesday evening, Colonial was sputtering back to life after closing the fuel faucet to the eastern and southern U.S.; the FBI and the Cybersecurity and Infrastructure Security Agency had issued a joint advisory about the threat actor - DarkSide - that mugged the company; and five affiliated crooks that rent DarkSide ransomware had been fingered by Mandiant FireEye.

Norway-based green energy solutions provider Volue has been working on restoring systems after being targeted in a ransomware attack. After the attack was disclosed, Volue asked customers to log off from its servers to "Avoid any further spreading of the ransomware," and also asked them to change their passwords for Volue services.

Crypto.com describes itself as the world's fastest-growing crypto app with over 10 million users across 90+ countries. The network slowdown kept recurring throughout the week, including today and has led to issues such as massive delays in purchases being reflected in the users' accounts.

Manchester City Council exposed online the number plates of more than 60,000 cars slapped with parking tickets, breaking data protection laws as it did so. In what appears to be a sincere if misguided attempt to provide public accountability over parking wardens, the council publishes income from parking tickets online in the open data section of its website.