Security News > 2021 > May

Following the ransomware attack that impacted the pipeline operated by Georgia-based Colonial Pipeline, security firms are providing detailed information on the cybercriminal gang behind the attack. The RaaS features the typical characteristics of any ransomware enterprise: after the target systems have been compromised, data is encrypted and exfiltrated for extortion purposes, and the victim is provided with means of contacting the attackers to receive details on the payment request and to negotiate the ransom.

Newly discovered Wi-Fi security vulnerabilities collectively known as FragAttacks are impacting all Wi-Fi devices going back as far as 1997. "The discovered vulnerabilities affect all modern security protocols of Wi-Fi, including the latest WPA3 specification. Even the original security protocol of Wi-Fi, called WEP, is affected."

On Wednesday, software company Egress released a report titled "Outbound email: Microsoft 365's security blind spot" highlighting email data breaches and IT frustrations during the coronavirus pandemic. "We can't ignore the risk of email data loss from Microsoft 365 and the limitations of static DLP solutions to mitigate the outbound email security risks that organizations face today."

I have 80 copies of my 2000 book Beyond Fear available at the very cheap price of $5 plus shipping. Note that there is a 20% chance that your book will have a "BT Counterpane" sticker on the front cover.

Researchers have discovered an Android trojan that can steal victims' SMS messages and credentials and completely take over devices. Once installed on a victim's device, attackers can use the trojan to obtain a live streaming of the device screen on demand and also interact with it via Accessibility Services, according to a report posted online by online fraud-management firm Cleafy about the trojan, which is also tracked by the name "Anatsa."

Colonial Pipeline, the largest refined products pipeline in the United States, last week revealed that it was forced to shut down operations after being hit by a piece of ransomware. "The US Government has lots of resources at its disposal and it does have a history of reaching out to industry to alert them to cyber threats and attacks impacting our industrial base. I would expect that the Government's A-team is actively involved in helping Colonial Pipeline contain and recover from the attack."

Britain is to spend £22m on training African and Indo-Pacific nations to stave off cyber influences from "Authoritarian regimes", foreign secretary Dominic Raab said today. "I'm very pleased to announce that the UK government will invest £22m in new funding to support cyber capacity building in those vulnerable countries," said Raab at the CyberUK conference this morning, making his single policy pledge in the speech.

Acquisition will extend Jamf's Zero Trust Network Access, threat defense and data policy enforcement for Apple devices. Jamf, a provider of enterprise management software for Apple devices, has signed a definitive agreement to acquire Wandera, a provider of zero trust cloud security and access for mobile devices, in a deal valued at $400 million in cash.

The Alaska court system said Tuesday it had restored email capabilities nearly two weeks after a cybersecurity attack. The court system, in a statement, said it doesn't know who was behind the attack, why the court system was targeted or how long it will be before services are fully back online.

A new HP Wolf Security study focuses on shifting cybersecurity threats in the age of remote working as employees use work devices for personal entertainment. The COVID-19 pandemic led to companies around the globe transitioning workers to remote work , introducing new challenges to companies and employees alike.