Security News

Defense of Convicted Cypriot Hacker in US Not Seeking Appeal
2021-03-22 18:28

A lawyer for a Cypriot hacker who has served almost four years behind bars said he will not appeal against a one-year jail sentence in the US for cyber-crimes he committed as a minor. A Georgia court handed down the jail term on Thursday in the trial of Joshua Pelloso Epifaniou, now 22, who was arrested in Cyprus in May 2017 and last year became the first Cypriot national ever extradited to the United States.

US Sentences Russian, North Macedonian in Cyber Fraud Case
2021-03-22 13:20

The United States sentenced a Russian and a North Macedonian on Friday to prison for their roles in a vast cyber crime operation. Sergey Medvedev, 33, of Russia and Marko Leopard, 31, of North Macedonia, were sentenced to ten and five years respectively, according to a Justice Department statement.

China Slams US Plan to Expel Phone Carriers in Tech Clash
2021-03-20 16:53

China's government on Thursday called on Washington to drop efforts to expel three state-owned Chinese phone companies from the United States in a new clash over technology and security. The United States should "Stop the wrong practice of generalizing the concept of national security and politicizing economic issues" and "Stop abusing state power to unreasonably suppress Chinese enterprises," said a ministry spokesman, Zhao Lijian.

FBI warns of BEC attacks increasingly targeting US govt orgs
2021-03-19 14:09

The Federal Bureau of Investigation is warning US private sector companies about an increase in business email compromise attacks targeting state, local, tribal, and territorial government entities. "From 2018 through 2020, the FBI observed increases in business email compromise actors targeting state, local, tribal, and territorial government entities for financial gain due to vulnerability exploitation and transparency requirements," the FBI said.

Swiss security provocateur who leaked Intel secrets indicted by US authorities
2021-03-19 04:59

Readers may remember Kottman pointed out holes in a security skills assessment website run by Deloitte, dropped 20GB of Intel secrets onto the web and shamed the security of DevOps tool SonarQube by releasing third-party code created with the project. Illegally accessing computers belonging to a security device manufacturer located in the Western District of Washington and stealing proprietary data.

US Charges Swiss ‘Hacktivist’ for Data Theft and Leaks
2021-03-19 03:09

The Justice Department has charged a Swiss hacker with computer intrusion and identity theft, just over a week after the hacker took credit for helping to break into the online systems of a U.S. security-camera startup. Swiss authorities said they had raided Kottmann's home in Lucerne late last week at the request of U.S. authorities.

Entrust and SYNNEX offer Entrust nShield HSMs and cybersececurity solutions across the US and Canada
2021-03-19 00:45

Entrust announced a master distributor agreement with SYNNEX to offer its comprehensive range of Entrust nShield hardware security modules and cybersecurity solutions to customers across the United States and Canada. This North America distribution agreement with SYNNEX provides its resellers with Entrust nShield HSMs to protect customer data and secure emerging technologies such as cloud, IoT, blockchain, and digital payments.

How cybercriminals are targeting US taxpayers as tax season approaches
2021-03-18 16:45

The latest scams use phishing emails to deliver remote access trojans to control a victim's computer and steal sensitive data, says Cybereason. With the usual April 15 deadline approaching, a report released Thursday by security provider Cybereason reveals the latest scams against taxpayers and offers advice on how to avoid them.

US taxpayers targeted with RAT malware in ongoing phishing attacks
2021-03-18 15:58

US taxpayers are being targeted by phishing attacks attempting to take over their computers using malware and steal sensitive personal and financial information. "The potential for damage is serious and the malware allows threat actors to gain full control over a victim's machine and steal sensitive information from users or their employers."

McAfee, the company, says Chinese attackers targeted Asian and US telcos
2021-03-18 06:58

Security vendor McAfee has detected an attack it believes was likely aimed at telecoms companies in the hope of stealing information related to 5G networks. McAfee has named the attack "Operation Diànxùn" and says it resembles past attacks perpetrated by groups named RedDelta and Mustang Panda.