Security News

US securities industry regulator FINRA is warning brokerage firms of an ongoing phishing attack pretending to be from 'FINRA Support. FINRA is a government-authorized non-profit organization that regulates all exchange markets and securities firms publicly active in the United States.

American authorities seized a range of Iran's state-linked news website domains they accused of spreading disinformation, the U.S. Justice Department said Tuesday, a move that appeared to be a far-reaching crackdown on Iranian media amid heightened tensions between the two countries. Relations between Iran and the U.S. have deteriorated for years following President Donald Trump's withdrawal from Tehran's nuclear deal and the return of devastating sanctions on the country.

The United States Air Force has issued a strangely specific threat to certain mollusc species living in the area of an upcoming weapons test. US military website The Warzone recently spotted that in an environmental report relating to future tests at the Ronald Reagan Ballistic Missile Defense Test Site around Kwajalein Atoll in the Marshall Islands, the USAF stated that a test of its AGM-183A Air-launched Rapid Response Weapon hypersonic boost-glide vehicle, or ARRW, would lead to four top-shell snails and up to 90 giant clams being killed.

Wegmans Food Markets notified customers that some of their information was exposed after the company became aware that two of its databases were publicly accessible on the Internet because of a configuration issue. Wegmans is a 106-store major regional supermarket chain with stores in the mid-Atlantic and Northeastern regions.

An organisation whose network was infected by Ryuk ransomware has spent $8.1m over seven months recovering from it - and that's still not the end of it, according to US news reports. The sum, spent by Baltimore County Public Schools, will doubtless raise some eyebrows and the public breakdown of the costs will be eye-opening for the infosec industry and potential corporate ransomware victims alike.

Russian national Oleg Koshkin was convicted for charges related to the operation of a malware crypter service used by the Kelihos botnet to obfuscate malware payloads and evade detection. "In particular, Koshkin worked with Peter Levashov, the operator of the Kelihos botnet, to develop a system that would allow Levashov to crypt the Kelihos malware multiple times each day," the Department of Justice said.

Media in the San Francisco area are reporting the arrest of a notorious former resident who allegedly skipped bail on hacking charges. Anonymous is perhaps best described as "a hacking group that wasn't" - a moniker that could be, and was, claimed by almost anyone with an internet axe to grind.

America's largest propane provider, AmeriGas, has disclosed a data breach that lasted ephemerally but impacted 123 employees. This month's data breach was reported by the propane giant to the Office of the New Hampshire Attorney General.

The REvil ransomware gang, thought to be behind an attack on meat producer JBS which netted an impressive $11m payoff, has found another victim. Described as a "a small, veteran-owned consulting firm focused on managing advanced technologies and concepts with strong potential for military and space applications," Sol Oriens' links to the US nuclear weapons programme were revealed in a job posting for a "Senior Nuclear Weapons System Subject Matter Expert" on recruitment site Lensa, first spotted by CNBC correspondent Eamon Javers.

US nuclear weapons contractor Sol Oriens has suffered a cyberattack allegedly at the hands of the REvil ransomware gang, which claims to be auctioning data stolen during the attack. Job postings first spotted by CNBC correspondent Eamon Javers provide some insight into Sol Orien's operations, who are seeking program managers, consultants, and a 'Nuclear Weapon System Subject Matter Expert' to work with the National Nuclear Security Administration.