CYBRI

02/24/2022

Newly discovered data-wiping software has hit hundreds of computers in Ukraine. Victims include a Ukrainian government agency and financial institution. Who is responsible for the wiper is unclear—although suspicion immediately fell on Russia.

Source: https://www.reuters.com/world/europe/ukrainian-government-foreign-ministry-parliament-websites-down-2022-02-23/

02/23/2022

NY Governor Kathy Hochul and the Biden administration have voiced concerns over potential cyberattacks from Russia and Russian-backed parties if the United States imposes sanctions as a response to aggression against Ukraine.

The governor said she’d convened cabinet members on Sunday to review cybersecurity preparedness “in light of current geopolitical uncertainty.”

02/19/2022

A single Saudi activist helped turn the tide against NSO Group, one of the world’s most sophisticated spyware companies now facing allegations that its software was used to hack government officials and dissidents around the world.

A single activist helped turn the tide against NSO Group, one of the world’s most sophisticated spyware companies now facing a cascade of legal action and scrutiny in Washington over damaging new allegations that its software was used to hack government officials and dissidents around the world.

02/14/2022

The San Francisco 49ers have been hit by a ransomware attack—with cyber criminals claiming they stole the team’s financial data. News of the attack comes days after the FBI issued an alert on the ransomware gang BlackByte.

RICHMOND, Va. (AP) — The San Francisco 49ers have been hit by a ransomware attack, with cyber criminals claiming they stole some of the football team's financial data. The ransomware gang BlackByte recently posted some of the purportedly stolen team documents on a dark web site in a file marked "2...

02/09/2022

Many organizations are still highly exposed to credential attacks because of insufficient multi-factor authentication (MFA). With high-valued credentials, attackers can cause serious damage by stealing and selling data all while hiding their tracks.

The report says 89% of organizations experienced a phishing attack in 2021 and 34% sustained a credential stuffing attack.

02/03/2022

After an American security researcher fell victim to a North Korean hacking campaign, he took matters into his own hands—singlehandedly taking down almost every North Korean website.

Disappointed with the lack of US response to the Hermit Kingdom's attacks against US security researchers, one hacker took matters into his own hands.

01/31/2022

The American government was reportedly interested in the spyware system, dubbed “Phantom,” because Israel's notorious Pegasus spyware does not work on U.S. telephone numbers.

U.S. agencies considered buying "Phantom," a previously unknown spyware system from NSO Group, even after ongoing allegations of misconduct emerged.

01/24/2022

Ukrainian government websites were defaced in Ukrainian, Russian and broken Polish with the message: “Be afraid and expect worse”. Meanwhile, Ukrainian authorities have also detected hackers scanning for vulnerabilities in their energy sector.

While the Russian military might be poised to invade Ukraine, hackers in the region are also creating chaos in cyberspace — and the consequences could be far-ranging.

01/18/2022

A 19-year-old security researcher exposed vulnerabilities in Tesla's connected keyless entry and driving system by remotely unlocking doors and windows, flashing car headlights and even starting the engines of several cars.

The hacker, who lives in Germany, said, on Twitter, that he was able to remotely start Tesla cars in different countries without the knowledge of the driver

01/09/2022

Polish Senator Krzysztof Brejza was hacked with NSO’s Pegasus spyware. The revelations have rocked Poland, drawing comparisons to the 1970s Watergate scandal in the U.S. and eliciting calls for an investigation.

WARSAW, Poland (AP) — Amnesty International said Thursday it has independently confirmed that powerful spyware from the Israeli surveillance software maker NSO Group was used to hack a Polish senator multiple times in 2019 when he was running the opposition’s parliamentary election campaign.

01/06/2022

Despite all the advances in , there are still big problems that need to be fixed. The most glaring issue is that many organizations still rely on outdated technology and protocols that are vulnerable to attack.

Many corporations are still vulnerable to data breaches due to their use of outdated technology, practices, and processes. Clearly, the continuing data breach news shows we must continue to win hearts, minds, and will to defend our digital identities and businesses better.

01/01/2022

In 2021, hackers seized global attention by targeting critical infrastructure, hacking American oil pipeline system Colonial Pipeline, meat-processing giant JBS and Iowa New Cooperative—to name just a few.

U.S. authorities scored a handful of rare wins against ransomware actors in what once seemed like an unwinnable battle.