Red Cross Cyberattack Puts 515,000 'Vulnerable People' at Risk

Mihir Bagwe • January 20, 2022

Data on more than 515,000 "highly vulnerable people" has been compromised as the result of a supply chain cyberattack, the International Committee of the Red Cross has disclosed. The organization has appealed to the unidentified attackers to not misuse the data.

Fraud Management & Cybercrime

Night Sky Ransomware Distributed via Log4j Exploits

Latest

Cloud Security

Biden Memo Orders Cybersecurity Improvements

Dan Gunderman • January 20, 2022

U.S. President Joe Biden today signed a National Security Memorandum that aims to improve the cybersecurity of national security systems. The memo gives new powers to the NSA to oversee cybersecurity improvements such as the use of the multifactor authentication, encryption and endpoint detection services.

3rd Party Risk Management

2 Key Cybersecurity Lawmakers Will Not Seek Reelection

Dan Gunderman • January 19, 2022

In a span of just days, two prominent congressmen who have long advanced cybersecurity at the federal level announced that they will not be seeking reelection in 2022. Reps. Jim Langevin, D-R.I., and John Katko, R-N.Y., will, however, pursue a cyber agenda throughout the remainder of their terms.

Application Security

Log4Shell Update: VMware Horizon Targeted

Prajeet Nair • January 19, 2022

Attackers have been actively targeting Log4j vulnerabilities, or Log4Shell, vulnerabilities in the servers of virtualization solution VMware Horizon to establish persistent access via web shells, according to an alert by the U.K. National Health Service.

Application Security

OpenSubtitles Data Breach Affected 6.7 Million Users

Mihir Bagwe • January 19, 2022

OpenSubtitles, a website providing free movie subtitles, confirmed to its users today that it had been hacked last August and the hacker had demanded a ransom to remain silent about the attack and to delete the leaked data. This data breach affected 6,783,158 users.

Critical Infrastructure Security

European Authorities Seize VPN Service Tied to Ransomware

Devon Warren-Kachelein • January 19, 2022

VPN Lab, known for its alleged wide use by ransomware threat actors, has been shut down. Fifteen servers associated with VPNLab.net were seized or disrupted based on multiple international investigations tying the VPN service provider to cybercrime operations, according to Europol.

Business Continuity Management / Disaster Recovery

JPMorgan Chase Invests $12 Billion in Security Updates

Devon Warren-Kachelein • January 19, 2022

JPMorgan Chase will earmark $12 billion for technological updates - including cloud migration, upgrading legacy architecture, data strategy, and emerging technologies. About half of this budget will go toward security modernization, while the other half will be invested into digital innovation.

Cybercrime

Indian Fashion Retailer Data Leaked on Darknet Marketplace

Soumik Ghosh • January 19, 2022

Ransomware group ShinyHunters has published 700 GB of data stolen from Indian firm Aditya Birla Fashion and Retail on a dark web forum, says Troy Hunt of Have I Been Pwned. A source at the retailer, however, says that its threat intrusion and detection solutions have not shown signs of an attack.

3rd Party Risk Management

Why SBOMs in the Healthcare IT Supply Chain Are Critical

Marianne Kolbasuk McGee • January 19, 2022

Because healthcare IT environments are so complicated, it will become essential for all suppliers to provide and maintain a software bill of materials for their products to remain relevant, says Curt Miller of the Healthcare Supply Chain Association.

Endpoint Protection Platforms (EPP)

McAfee Enterprise and FireEye Products Rebrand as Trellix

Mathew J. Schwartz • January 19, 2022

Endpoint detection and response software news: The entity formerly known as McAfee Enterprise and FireEye Products has a new name: Trellix. Think of a "security trellis to businesses across the globe, giving them support they need to keep them safe," says CEO Bryan Palma. Will customers and prospects buy in?

Digital Identity

Identity Market Likely to Consolidate in 2022

Suparna Goswami • January 18, 2022

In 2022, there will be a push for identity management capabilities that are behind the scenes and built into processes, says Peter Tapling, a board member on the U.S. Faster Payments Council.

Fraud Management & Cybercrime

NSO Group Spyware Reportedly Used by Israeli Police Force

Dan Gunderman • January 18, 2022

Spyware from controversial Israeli firm NSO Group was reportedly used by the nation's civilian police force, according to a new report from an Israeli business publication. Its findings allege that the Israel Police conducted warrantless phone taps on Israeli politicians and activists, among others.

Cyberwarfare / Nation-State Attacks

New Chinese Threat Group Deals in Espionage and Theft

Mihir Bagwe • January 18, 2022

A new threat group linked to China, dubbed "Earth Lusca" by researchers, is not only running cyberespionage campaigns against governments around the globe, but also seeking financial gain.