Security News

A couple of months after Y's departure, X received an email from another colleague, whom we shall call Z. and Z received a "Bounce" message from a external email address Q that Z hadn't copied in on the original email. Smelling a rat, Z alerted Y to inform him about the mysterious "Q" in the email equation.

The US House Committee on the Judiciary met on Wednesday to hear testimony on the government's practice of secretly subpoenaing cloud service providers, and Microsoft was happy to oblige. Tom Burt, Microsoft's veep of customer security & trust, testified as a representative of cloud service providers.

Arthur J. Gallagher, a US-based global insurance brokerage and risk management firm, is mailing breach notification letters to potentially impacted individuals following a ransomware attack that hit its systems in late September. "Working with the cybersecurity and forensic specialists to determine what may have happened and what information may have been affected, we determined that an unknown party accessed or acquired data contained within certain segments of our network between June 3, 2020 and September 26, 2020," AJG said.

New survey finds that the attack also motivated more information sharing within the industry and improved supply chain security. The good news is that security teams are beefing up network defenses, but the bad news is that most companies have recently suffered a cybersecurity incident that required a board meeting.

US securities industry regulator FINRA is warning brokerage firms of an ongoing phishing attack pretending to be from 'FINRA Support. FINRA is a government-authorized non-profit organization that regulates all exchange markets and securities firms publicly active in the United States.

American authorities seized a range of Iran's state-linked news website domains they accused of spreading disinformation, the U.S. Justice Department said Tuesday, a move that appeared to be a far-reaching crackdown on Iranian media amid heightened tensions between the two countries. Relations between Iran and the U.S. have deteriorated for years following President Donald Trump's withdrawal from Tehran's nuclear deal and the return of devastating sanctions on the country.

The United States Air Force has issued a strangely specific threat to certain mollusc species living in the area of an upcoming weapons test. US military website The Warzone recently spotted that in an environmental report relating to future tests at the Ronald Reagan Ballistic Missile Defense Test Site around Kwajalein Atoll in the Marshall Islands, the USAF stated that a test of its AGM-183A Air-launched Rapid Response Weapon hypersonic boost-glide vehicle, or ARRW, would lead to four top-shell snails and up to 90 giant clams being killed.

Wegmans Food Markets notified customers that some of their information was exposed after the company became aware that two of its databases were publicly accessible on the Internet because of a configuration issue. Wegmans is a 106-store major regional supermarket chain with stores in the mid-Atlantic and Northeastern regions.

An organisation whose network was infected by Ryuk ransomware has spent $8.1m over seven months recovering from it - and that's still not the end of it, according to US news reports. The sum, spent by Baltimore County Public Schools, will doubtless raise some eyebrows and the public breakdown of the costs will be eye-opening for the infosec industry and potential corporate ransomware victims alike.

Russian national Oleg Koshkin was convicted for charges related to the operation of a malware crypter service used by the Kelihos botnet to obfuscate malware payloads and evade detection. "In particular, Koshkin worked with Peter Levashov, the operator of the Kelihos botnet, to develop a system that would allow Levashov to crypt the Kelihos malware multiple times each day," the Department of Justice said.