Security News > 2021 > June

Companies have to be constantly vigilant about cybersecurity in order to stay safe, expert says. Larger gangs are providing ransomware-as-a-service for smaller criminal organizations.

Last month, ransomware group DarkSide targeted operator Colonial Pipeline Co., disrupting. Fuel supply in the Eastern part of the U.S. The attack on a major U.S. oil pipeline had widespread ripples: it prompted President Joe Biden to declare a state of emergency.

Think back to mid-2019: People had already been moving to the cloud, having talked about digital transformation for years. That's when the old ways of doing things collapsed as people realized that those old ways were not only slow and painful; they were also expensive, according to Jim Fulton, director of Secure Access Service Edge and Zero Trust solutions at Forcepoint.

As the post-pandemic economy roars back to life, cybercriminals are using a new whirlwind of transactions as cover to launch an extraordinary number of bank fraud attacks. In just the past quarter, the number of attacks on banks ballooned by 159 percent.

Four months later, in early May, the company gave up on its plans to delete user accounts, saying that, starting May 15, features would be removed one by one for users who don't agree with the new policy changes. "Given recent discussions with various authorities and privacy experts, we want to make clear that we will not limit the functionality of how WhatsApp works for those who have not yet accepted the update," the company said in a statement.

FujiFilm is investigating a ransomware attack and has shut down portions of its network to prevent the attack's spread. FujiFilm, also known as just Fuji, is a Japanese multinational conglomerate headquartered in Tokyo, Japan, which initially started in optical film and cameras. "FUJIFILM Corporation is currently carrying out an investigation into possible unauthorized access to its server from outside of the company. As part of this investigation, the network is partially shut down and disconnected from external correspondence," FUJIFILM said in a statement.

Hunt therefore also offers a public service called Pwned Passwords, where you can look up your own password in a database of just over 600 million already-recovered passwords, whether those passwords were stolen due to a large-scale corporate data breach, a carefully planned ransomware attack, a long-running malware infestation, or any other cause. Avoiding a 10GB download. If you don't have the time or energy to download 10GB or more of of Pwned Passwords data, you can look up your password without giving it away directly.

Huawei has belatedly fixed an embarrassing vulnerability in a USB connectivity dongle, spotted by Trustwave, after The Register intervened. When infosec firm Trustwave's Spiderlabs division took a closer look at the stick last year, its researchers found a security blunder that affects macOS users: the USB stick acts as a storage drive that includes software to install to manage the dongle.

During the Build 2021 developer conference, we got the first word that Microsoft is working on the next generation of Windows. Today, Microsoft has out press invites for an event they're holding on June 24 at 11 AM ET. The invitation, sporting the tagline "Find out what's next for Windows," includes a reference to what looks to be a new logo for Windows.

Microsoft's aggressive push to ferret out security problems in the firmware powering IoT devices took on new urgency this week with the acquisition of ReFirm Labs, an early-stage startup that helps businesses pinpoint and fix weak links at the firmware layer. According to Microsoft's David Weston, the ReFirm Labs technology will be offered as a feature in the Azure Defender for IoT product.