Security News

Qurium Media Foundation has reported a campaign of DDoS attacks on Filipino media outlets and human rights organisations that appear to be coming from the country's Department of Science and Technology and Army. "During the past month, Qurium has received brief but frequent denial attacks against the Philippine alternative media outlets Bulatlat and AlterMidya, as well as the human rights group Karapatan," said the Swedish digital rights, data protection, and internet security NGO in its online report.

The transition to EHRs has made ransomware and data-theft attacks far more costly and damaging for healthcare institutions. Researchers have found that Ryuk ransomware is increasingly targeting RDPs, particularly in the healthcare sector.

No sensitive information was compromised in a ransomware attack last month on the state agency that provides ferry service between mainland Massachusetts and the islands of Martha's Vineyard and Nantucket. "After a rigorous evaluation of our systems, this investigation has now concluded and the cybersecurity investigators have confirmed that no sensitive information, including customer data or payment information, was viewed or downloaded during this incident," the Woods Hole, Martha's Vineyard and Nantucket Steamship Authority announced in a statement Wednesday.

In order to protect themselves and your business against phishing campaigns, malware and other types of attacks, your workers should have a certain awareness of cyber incidents and more importantly security best practices. Automatically expecting your fellow workers to become knowledgeable enough about cybersecurity to help combat attacks is foolhardy, unless you provide them with the right training.

A televised phone-in with Russian President Vladimir Putin Wednesday was targeted by "Powerful" cyberattacks, the state-run Rossiya 24 network which broadcast the event said. Shown on Kremlin-friendly media, the annual session with Putin sees the president field in real time queries submitted by Russians throughout the country.

SonicWall announced three new high-performance firewall models for enterprises and large organizations - NSa 4700, NSa 6700 and NSsp 13700 - designed to accelerate network throughput, stop advanced cyberattacks like ransomware, and securely connect millions of users. The new SonicWall NSa 4700 and NSa 6700 next-generation firewalls deliver 18 and 36 Gbps of firewall throughput - three times the previous comparable SonicWall appliances.

Analyzing the illegitimate use of Cobalt Strike, Proofpoint said it found that the tool is increasingly being used by attackers as an initial access payload, meaning it's enlisted to deploy the initial malicious payload onto victimized machines. This is a change from past instances when Cobalt Strike was used more as a second-stage tool that played a role once the targeted systems had already been accessed.

More than 3.5 million people worldwide are needed to play defense against cyberattacks. TechRepublic's Karen Roby spoke with Tom Kellerman, head of cybersecurity strategy for VMware, about ransomware and cybersecurity.

Intermedia Cloud Communications launched AI Guardian - the artificial intelligence-based security solution designed to protect businesses and their employees from dangerous and targeted cyberattacks. Integrated within Intermedia Email Protection - the email security engine that currently protects millions of mailboxes globally - and powered by Armorblox, developer of a leading natural language understanding platform for cybersecurity, AI Guardian's algorithms analyze thousands of signals involving the language, context, and historical pattern of emails to prevent increasingly more complex spam, viruses, ransomware, malware, and phishing attempts from ever reaching mailboxes.

Taiwanese networking equipment company Zyxel is warning customers of an ongoing attack targeting a "Small subset" of its security products such as firewall and VPN servers. Attributing the attacks to a "Sophisticated threat actor," the firm noted that the attacks single out appliances that have remote management or SSL VPN enabled, namely in the USG/ZyWALL, USG FLEX, ATP, and VPN series running on-premise ZLD firmware, implying that the targeted devices are publicly accessible over the internet.