Security News

The Dark Web allows cybercriminals to create a Cyber Attacks-as-a-Service ecosystem that outmaneuvers security defenses. Cybersecurity researchers Keman Huang, Michael Siegel, Keri Pearlson and Stuart Madnick in their paper Casting the Dark Web in a New Light, published in the MIT Sloan Management Review, asked whether attackers-who more often than not are one or two steps ahead of cyberdefenders-are more technically adept, or is it something else? The paper was written in 2019, but the material is as relevant now as it was then, and maybe even more so.

The US Department of Justice has just unsealed a lengthy list of cybercrime charges against three North Koreans. The DOJ explicitly named the three accused men as Jon Chang Hyok, Kim Il, and Park Jin Hyok, alleging them to be part of a North Korean hacking group that you may have heard referred to over the years as APT38 or the Lazarus Group.

The Dutch Police have begun posting warnings on Russian and English-speaking hacker forums not to commit cybercrime as law enforcement is watching their activity. Since the conclusion of Operation LadyBird, law enforcement's disruption of the Emotet botnet, the Dutch Police state that they are creating forum accounts on hacker forums to warn hackers that they are watching them publicly.

Cybercriminals shifted away from stealing individual consumers' information in 2020 to focus on bigger, more profitable attacks on businesses, according to a report from the Identity Theft Resource Center. Ransomware and phishing attacks are now the preferred form of data theft because they require less effort and generate bigger payouts.

In order to defeat these cyber bad guys, security pros and AI should focus on what they do best. AI is markedly better at security-threat detection if clear guidelines can be turned into training data for AI. "For instance, if there are guidelines on certain kinds of IP addresses or websites that are known for being the source of malicious malware activity, the AI can be trained to look for them, take action, learn from this, and become smarter at detecting such activity in the future," writes Sivaraman.

In his Chamber of Commerce commentary, Beyond the Hype - Artificial Intelligence in Cybersecurity, Housley writes, "While AI systems support cybersecurity by enabling prevention or detection and resolution of threats, they should not be considered the panacea to all cybersecurity problems." Next, the discussion during the webinar looked at how AI will benefit and enhance cybersecurity programs.

In 2010, in a different world where no one has heard about lockdowns and social distancing, I wrote an article on SecurityWeek - The Optimist's Cybercrime Predictions for 2011. Not only to look at my predictions in the view of a single year, but of an entire decade.

As individuals and organizations alike face cyberattacks on a regular basis, cybercrime enacts a huge financial toll around the world. In a new report released Monday, McAfee reveals the costs of cybercrime and offers advice on how to better protect your organization.

Cybercrime costs the world economy more than $1 trillion, or just more than one percent of global GDP, which is up more than 50 percent from a 2018 study that put global losses at close to $600 billion, McAfee reveals. The theft of intellectual property and monetary assets is damaging, but some of the most overlooked costs of cybercrime come from the damage to company performance.

Three Nigerian nationals have been arrested in Lagos for their suspected involvement in Business Email Compromise scams. The three - identified only as OC, 32, IO, 34, and OI, 35 - are believed to be part of a larger organized crime group called TMT, which has been involved in malware distribution, phishing, and extensive BEC fraud.