Security News

In the modern twist on old-fashioned war games, the U.S. military dispatched cyber fighters to Estonia this fall to help the small Baltic nation search out and block potential cyber threats from Russia. The U.S. Cyber Command operation occurred in Estonia from late September to early November, officials from both countries disclosed this week, just as the U.S. was working to safeguard its election systems from foreign interference and to keep coronavirus research from the prying reach of hackers in countries including Russia and China.

Spamhaus Technology releases its Intelligence API. This is the first time Spamhaus has released its extensive threat intelligence via API, providing enriched data relating to IP addresses exhibiting compromised behaviour. Available free of charge, developers can readily access enhanced data that catalogues IP addresses compromised by malware, worms, Trojan infections, devices controlled by botnets, and third party exploits, such as open proxies.

A 22-year-old North Carolina man has been sentenced to nearly eight years in prison for conducting bomb threats against thousands of schools in the U.S. and United Kingdom, running a service that launched distributed denial-of-service attacks, and for possessing sexually explicit images of minors. Timothy Dalton Vaughn from Winston-Salem, N.C. was a key member of the Apophis Squad, a gang of young ne'er-do-wells who made bomb threats to more than 2,400 schools and launched DDoS attacks against countless Web sites - including KrebsOnSecurity on multiple occasions.

A North Carolina man was sentenced to 95 months in federal prison for his involvement in multiple cyber and swatting attacks. Responsible for making threats of shootings and bombings to numerous schools located in the United States and United Kingdom, Vaughn was sentenced to 95 months in prison for child pornography and 60 months for each of the other charges.

One of the biggest issues organizations have today is ransomware attacks. Basically, what they do is they sell access to their attacks.

The most vulnerable devices include laptops, computers, smartphones and tablets, networked cameras and storage devices, and streaming video devices, a new report found. The most vulnerable connected home devices include laptops, computers, smartphones and tablets, networked cameras, networked storage devices, and streaming video devices, according to the report.

Despite being concerned about the security risks behind online shopping, consumers lack knowledge about some of the biggest retail risks - with more than half unaware of digital credit-card skimming threats posed by the Magecart group. According to the research, 85 percent are at least mildly concerned about their personal information being compromised when shopping through a website or browser; while 88 percent of shoppers are at least mildly concerned about the safety of mobile apps for retail purposes.

Group-IB has revealed the results of its yearslong development of proprietary high-tech products for threat hunting and research - Threat Intelligence & Attribution and Threat Hunting Framework. The creation of TI&A marks the emergence of a new type of solutions for collecting data on threats and attackers relevant for a particular organization with the aim of examination and proactive hunting for threat actors, research, and protection of network infrastructure.

Cyber Risk Aware announces a new partnership with one of the UK's largest cyber security solutions providers, Blue Cube Security. Cyber Risk Aware and Blue Cube Security have joined forces on a mission to tackle the increasing cyber threat to businesses and organisations in the UK. Over the last year, 98% of security professionals in the UK have reported an increase in cyber-attacks, with 96% revealing more sophisticated methods being used in these attacks.

A Chinese threat actor tracked as Mustang Panda was observed using an updated arsenal of tools in recent attacks, Proofpoint's security researchers revealed on Monday. Also referred to as TA416 and RedDelta, the threat group is known for the targeting of entities connected to the diplomatic relations between the Vatican and the Chinese Communist Party, along with entities in Myanmar, and the new campaign appears to be a continuation of that activity.