North Korean Hackers Targeting IT Supply Chain: Kaspersky
As part of the observed attacks, the group used an updated DeathNote malware cluster, which includes a slightly modified version of BLINDINGCAN, a piece of malware that the U.S. Cybersecurity and Infrastructure Security Agency (CISA) associated with the group. A new variant of COPPERHEDGE, which Lazarus has been using for at least two years, was…
Two Bulletproof Hosting Administrators Sentenced to Prison in U.S.
Between 2009 and 2015, the two individuals – Aleksandr Skorodumov, 33, of Lithuania, and Pavel Stassi, 30, of Estonia – served as administrators for an organization that offered bulletproof hosting to malware families such as Citadel, SpyEye, Zeus, and the Blackhole exploit kit. The organization, which was founded and led by Russian nationals Aleksandr Grichishkin…
Former Execs of Cybersecurity Firm GigaTrust Charged With Financial Fraud
The charges, announced on Wednesday by the U.S. Justice Department, target Robert Bernardi, the Virginia-based company’s founder and CEO, Nihat Cardak, the firm’s chief financial officer, and Sunil Chandra, former VP of business development. Founded in 2001, GigaTrust provided endpoint email security and document in-use protection solutions to enterprises and government organizations. The company filed…
US to Curb Hacking Tool Exports to Russia, China
The rules, which are set to go into force in 90 days, would prevent the sale of certain software or devices to a list of countries unless approved by a bureau of the Commerce Department. “The United States opposes the misuse of technology to abuse human rights or conduct other malicious cyber activities, and these…
Acer Confirms Breach of Servers in Taiwan
Acer initially confirmed that some of its servers in India had been hacked after a group called Desorden claimed to have stolen more than 60 gigabytes of data from Acer India. The hackers claimed to have obtained information on millions of customers, login credentials used by thousands of retailers and distributors, and various corporate and…
Threat Detection Marketplace SOC Prime Raises $11 Million
The new capital, the company says, will help it accelerate the adoption of its marketplace, which allows security researchers to monetize their content to help others fend off cyberattacks. On the company’s Content-as-a-Service (CaaS) platform, security teams can find curated up-to-date Sigma-based threat detection content from roughly 400 researchers. More than 6,000 enterprises, governments and…
University of Pittsburgh Medical Center Hacker Sentenced to Prison
The man, Justin Sean Johnson, 30, formerly of Detroit, Michigan, who was known on the dark web as TheDearthStar and Dearthy Star, stole personally identifiable information (PII) of more than 65,000 UPMC employees. Johnson, the DoJ explains, hacked UPMC’s servers between 2013 and 2014, stealing both PII and W-2 information that he then sold on…
Ransomware Hit SCADA Systems at 3 Water Facilities in U.S.
The alert was issued by the FBI, CISA, the EPA and the NSA. The agencies are aware of attacks — launched by both known and unknown threat actors — against the IT and OT (operational technology) networks of water facilities. The agencies noted that while cyber threats are increasing across critical infrastructure sectors, the latest…
Nations Vow to Combat Ransomware at US-Led Summit
The United States gathered the countries — with the notable exception of Russia — to unify and boost efforts to fight a cybercrime that is transnational, on the rise and potentially devastating. “The threat of ransomware is complex and global in nature and requires a shared response,” the joint summit statement said, adding the nations…
Nations Reveal Ransomware Pain at US-Led Summit
The United States has convened some 30 countries — with the notable exception of Russia — to boost cooperation in fighting the costly and disruptive attacks that have boomed around the world. As if on cue, Yigal Unna, director of Israel’s National Cyber Directorate, broke news of the latest incident. “I can disclose now that…
