Security News

Business email compromise attacks continue to be a thorn in companies' sides, with the FBI in its IC3 annual cybercrime report saying that the attacks cost victims $1.7 billion in 2019. Making matters worse, BEC cybergangs are turning to new tactics and tricks to avoid detection and capitalize on existing victims.

Cybercriminals have been creating phishing emails, suspicious websites, downloadable apps and files, and other malicious content all geared toward trapping people curious or anxious about the pandemic. These cyberattacks encompass malicious websites with the word "Corona" or "Covid" in the domain name, files with "Corona" in their name, and files attached to coronavirus-related phishing emails.

Nearly one in seven senior decision makers said their organization has already experienced at least one cyberattack since the start of the COVID-19 pandemic, according to a new report by Alliant Cybersecurity. SEE: Cybersecurity: SMBs are keeping up with big companies, according to Cisco survey.

In many cases, IT staff and other employees need to remotely connect to workstations and servers at the office, and for that they typically rely on the Microsoft Remote Desktop Protocol built into Windows. In a blog post published on Thursday, McAfee explains how cybercriminals are taking advantage of RDP access and what organizations can do to protect themselves.

Resecurity, a global leader in risk management and threat analysis, announces its partnership with Rajan Pant to help lead the geographic expansion into SAARC countries. Rajan has extensive experience in cyber law and digital forensics and will bring his 25 years of experience to partner with Resecurity as it redefines the way SAARC countries deal with cyber attacks and risk management.

The European Union on Thursday accused unnamed parties of exploiting the coronavirus pandemic to launch cyberattacks on infrastructure and healthcare services. A flood of cyberattacks has targeted European countries, affecting critical systems needed to deal with the virus crisis, said foreign policy chief Josep Borrell in a statement on behalf of all 27 EU members.

A report released Wednesday by security provider Arcserve highlights the attitudes and feelings among consumers toward companies hurt by a successful cyberattack. Based on a survey of almost 2,000 consumers across North America, the United Kingdom, France, and Germany, Arcserve's report titled "Ransomware's Stunning Impact on Consumer Loyalty and Purchasing Behavior" found that 59% of respondents would likely avoid during business with an organization that experienced a cyberattack in the past year.

Privacy advocates are urging developers to proceed with caution as they use technology released by Apple and Google to build COVID-19 contact-tracing apps - and are warning against the potential for cybercriminal use. "The apps built on top of Apple and Google's new system will not be a 'magic bullet' techno-solution to the current state of shelter-in-place," EFF staff technologist Bennet Cyphers and director of research Gennie Gebhart said, in a post on Tuesday on the organization's blog.

The World Health Organization has seen a dramatic increase in the number of cyberattacks targeting its staff and email scams directed at the public. "Ensuring the security of health information for member states and the privacy of users interacting with us a priority for WHO at all times, but also particularly during the COVID-19 pandemic," said Bernardo Mariano, WHO's chief information officer, in a statement.

IT services firm Cognizant suffered a cyberattack on its internal systems by the Maze ransomware group, causing disruption for some of its global clients. Cognizant is one of the largest IT-managed services companies in the world and has close to 300,000 employees and over $15 billion in revenue.