incident response Archives - Page 3 of 15

Shadowserver Starts Conducting Daily Scans to Help Secure ICS

Issued by: Security Week

The nonprofit cybersecurity organization is scanning the web for exposed services that use the Modbus industrial communications protocol on TCP port 502, but Shadowserver’s Piotr Kijewski told SecurityWeek that they plan on introducing many other ICS and operational technology (OT) protocol scans in the near future. Shadowserver has been working with national cybersecurity agencies, law…

Malware & Threats

Everything You Need To Know About Ransomware Attacks and Gangs In 2022

Issued by: Security Intelligence

Ransomware is a lucrative business for criminals. It is paying off, and it is working. According to a recent Trend Micro report, a staggering 84% of US organizations experienced either a phishing or ransomware attack in the last year. The average ransomware payment was over $500,000. Bad actors want to keep cashing in. So they’re…

Vulnerabilities

Albanian Prime Minister Apologizes Over Database Leak

Issued by: Security Week

A file containing the personal identity card numbers, employment and salary data of some 637,000 people became public this week and was widely shared through messaging apps. Prime Minister Edi Rama said the leak is being investigated. “According to a preliminary analysis, it looks more like an internal infiltration rather than an outside … cyber-attack,”…

Application Security, Cloud Security, Mobile Security, Software Security

ZeroFox to Go Public in $1.4 Billion SPAC Deal

Issued by: Security Week

ZeroFox provides an AI-powered platform that protects users and brands from social media-sourced threats. The platform analyzes millions of pieces of publicly-accessible content in platforms such as Microsoft 365, G Suite, LinkedIn, Facebook, Slack, Instagram, and Apple and Google mobile app stores — looking for potential threats such as account compromise, fraudulent profiles, business email…

Malware & Threats

Microsoft Seizes Domains Used by China-Linked APT ‘Nickel’

Issued by: Security Week

The tech giant took over the websites after filing pleadings with the U.S. District Court for the Eastern District of Virginia, which quickly granted an order in this regard. While the move will prevent the group’s access to some of its victims, it is unlikely to put an end to Nickel’s activities. However, Microsoft does…

Malware & Threats

Cyberattack Causes Significant Disruption at Colorado Electric Utility

Issued by: Security Week

The Delta-Montrose Electric Association (DMEA) is a member-owned and locally controlled rural electric cooperative that serves more than 34,000 customers in Colorado’s Montrose, Delta, and Gunnison counties. It is part of Touchstone Energy Cooperatives, a cooperative federation that has over 750 members across the United States. DMEA last week revealed that it had discovered a…

Malware & Threats

Wind Turbine Giant Vestas Confirms Ransomware Involved in Cyberattack

Issued by: Security Week

Vestas became aware of the breach on November 19 and it immediately started shutting down IT systems. Little information was provided when the attack was disclosed, but the company’s description of the incident suggested that it was a ransomware attack. In an update shared on Monday, Vestas confirmed that ransomware was indeed used and that…

Network Security

IoT Security: Are Personal Devices Dragging Your Work Network Down?

Issued by: Security Intelligence

How many connected devices have you added to your household since March 2020? Be sure to count fitness trackers, speakers, gaming machines and even your Tesla, if there’s one in your driveway. Were you one of the many people who waited months for a Peloton? Don’t overlook your new bike. Now add in all your…

Network Security

SecurityWeek to Host Security Operations Summit as Virtual Event Dec. 8

Issued by: Security Week

In this exclusive SecurityWeek virtual event, defenders from the trenches will share use cases, best practices, insights for adopting tools and processes, and war stories to help make security operations centers (SOCs) more effective and efficient. Attendees can immerse themselves in a virtual environment to discuss the latest security operations trends and challenges and gain…

Vulnerabilities

CISA Releases Incident and Vulnerability Response Playbooks

Issued by: Security Week

The executive order on improving the nation’s cybersecurity tasked CISA with developing playbooks for federal civilian agencies to help them plan and conduct vulnerability and incident response. While the playbooks have been created for federal civilian agencies and their contractors, CISA says the information could also be useful to critical infrastructure organizations and private sector…