Posts From CCME
The Los Angeles Department of Water and Power has been accused of deliberately keeping widespread gaps in its cybersecurity a secret from regulators in a large-scale coverup involving the city’s mayor. The allegations were made by Ardent Cyber Solutions LLC,
Necurs Botnets Busted
Eleven Necurs botnets, which infected more than nine million computers since 2012, have been severely disrupted. The botnets were dealt a blow through the joint efforts of BitSight, Microsoft’s Digital Crimes Unit (DCU), and by partners across 35 countries who
Phishers Use Fake HIV Test Results as Bait
Cybersecurity researchers have uncovered a new phishing campaign that uses fake HIV test results to lure victims into clicking a malicious link. The morally bereft campaign has been detected targeting insurance, healthcare, and pharmaceutical companies around the world. In the
Recently, on Monday in New York, a federal judge has announced the verdict in the case of a former CIA software engineer who was blamed for stealing a massive trove of the agency’s detailed secret hacking tools and leaking 8000
Google’s Play Protect anti-malware tool is bottom of the league when compared to its main rivals, according to the latest findings from AV-Test. The independent testing body found that the Google tool, which is built-in to newer Android devices, was
Human Error Linked to 60% of Security Breaches
Three-fifths (60%) of UK businesses have experienced a cyber-attack and/or data breach caused by human error, knocking them out of action for days, according to new research from Gallagher. The global insurance company polled 1000 UK business leaders to find
Microsoft is warning of human-operated ransomware, this kind of attack against businesses is becoming popular in the cybercrime ecosystem. Human-operated ransomware is a technique usually employed in nation-state attacks that is becoming very popular in the cybercrime ecosystem. In human-operated
Ryuk Ransomware Takes Out Durham, North Carolina
The North Carolina city of Durham has become the latest US municipality struck by ransomware after reports suggested the Ryuk variant forced key services offline. In an update on Sunday, the local authority claimed that both the City of Durham
Multiple APT Actors Exploiting Microsoft Exchange Email Servers Vulnerability to Take Over the Server
Multiple APT actors attempting to exploit recently patched remote code execution bug in exchange email servers. The vulnerability can be tracked as CVE-2020-0688. It affects all versions of the exchange server. The bug resides in the Exchange Control Panel (ECP)
The University of Kentucky (UK) has fought off a month-long cyber-attack that impacted UK Healthcare and caused a system-wide slowdown. According to UK officials, the disruption was caused by cryptocurrency mining malware installed by threat actors on the UK network
The global pandemic of Coronavirus, and the concerns of people traveling and gathering indoors at large events, has hit the cybersecurity events calendar with events now being canceled. Initially Mobile World Congress was canceled, after being due to take place
Accenture Acquires Context Information Security
One of the UK’s most recognizable and respected information security service providers has been acquired by Accenture. Context Information Security was acquired for an undisclosed sum from former parent company Babcock International Group. The deal is the latest in a
(ISC)2 Membership Grows to Over 150,000
International cybersecurity organization (ISC)2 today announced that its membership has grown to include over 150,000 professionals. (ISC)2 is the world’s largest nonprofit association of certified cybersecurity professionals, drawing members from 175 different countries. The organization was founded in the United
Critical RCE Vulnerability in Cisco Protection let Hackers Execute an Arbitrary code Remotely
Multiple critical security vulnerabilities in Cisco allow attackers to execute arbitrary commands with user consent. The vulnerability affects Cisco FXOS Software, Cisco NX-OS Software, and Cisco UCS Manager Software. Cisco FXOS and UCS Manager – CLI A vulnerability in CLI
WatchGuard Technologies has announced its intention to acquire endpoint security vendor Panda Security. In a combination of network and endpoint technologies, WatchGuard said that the combined entity will provide centralized management of advanced threat detection and response functionality fueled by
Gender is still the biggest challenge facing many women seeking to progress in their cybersecurity careers, according to Sans Institute. The new findings released by SANS ahead of International Women’s Day on Sunday came from the first ever Women in