Railway Cybersecurity Firm Cylus Raises $30 Million
This brings the total raised so far to $57 million (seed plus Series A). Cylus logoCylus follows the now standard template for Israeli firms – founded by former Israeli Defense Force (IDF) cyber specialists before expanding into the U.S. market. Current CEO Amir Levintal was Director of the Cyber R&D Division of the IDF’s Elite…
Facebook Will Reward Researchers for Reporting Scraping Bugs
As part of its bug bounty program, the company will pay monetary rewards to security researchers who discover flaws that allow attackers to bypass existing scraping limitations and gain access to data at scale. Scrapers – including malicious apps, scripts, and websites – constantly adapt to evade detection, and Facebook says it is seeking ways…
Microsoft Patches 67 Security Flaws, Including Zero-Day Exploited by Emotet
In the final Patch Tuesday release for 2021, the Redmond, Wash. software giant called special attention to CVE-2021-43890, a spoofing vulnerability in the Microsoft Windows AppX installer and warned that the bug is being exploited in the wild by the Emotet malware operation. “Microsoft is aware of attacks that attempt to exploit this vulnerability by…
Germany Jails Operators of ‘Cyberbunker’ Darknet Hub
The so-called cyberbunker in southwestern Germany had allegedly been used to operate darknet networks such as “Wall Street Market” and “Fraudsters”, which have since been shut down. A court in Trier sentenced the main defendant, a Dutchman, to five years and nine months in jail. Six other defendants were sentenced to prison terms ranging from…
Cybersecurity M&A Roundup for December 1-12, 2021
Eighteen cybersecurity-related acquisitions were announced December 1-12, 2021. Acclaim Technical Services acquires Entegra Systems Acclaim Technical Services (ATS), which specializes in operational support, language, and technology services, has acquired cyber technology solutions provider Entegra Systems. Both companies are US-based government contractors, and the acquisition of Entegra, which provides services to defense and intelligence agencies, will…
Russian Who Helped Kelihos Malware Evade Detection Sentenced to 4 Years in Prison
Oleg Koshkin, 41, was given a 48-month prison sentence for one count of conspiracy to commit computer fraud and abuse and one count of computer fraud and abuse. He has been in custody since 2019, when he was arrested in California. Koshkin, who had been living in Estonia, operated online services designed to help malware…
Afero Raises $50 Million for Its Secure IoT Platform
The new investment came from Crosspoint Capital Partners. Home Depot also participated, but the terms of the transaction were not disclosed. Founded in 2014, Afero aims to secure device connectivity from the manufacturing process to consumer use, offering a platform that supports all types of smart home devices and provides secure cloud communication with Afero’s…
‘Moobot’ Botnet Targets Hikvision Devices via Recent Vulnerability
Tracked as CVE-2021-36260 and affecting over 70 cameras and NVRs from Hikvision, the critical-severity bug can be exploited to gain root access and completely take over vulnerable devices, without any form of user interaction. Hikvision released patches for the vulnerability on September 18 and, shortly after, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) alerted…
Ransomware Operators Leak Data Stolen From Wind Turbine Giant Vestas
Vestas became aware of the breach on November 19 and it immediately started shutting down IT systems. The company confirmed in late November that it had been hit by ransomware and that the breach resulted in internal files getting compromised. The firm said the incident did not impact wind turbine operations and nearly all systems…
QNAP Warns of New Crypto-Mining Malware Targeting NAS Devices
The Taiwan-based company, which is well known for its NAS and professional network video recorder (NVR) solutions, on Tuesday urged users to take immediate action to keep their devices protected against the new threat. QNAP says it is currently investigating reports where attackers infect NAS appliances with a Bitcoin miner that can be identified by…
