CrowdStrike CEO on Why It's Tough to Defend Sensitive Assets

Michael Novinson • February 3, 2023

Organizations today struggle with both new attack surface challenges such as cloud configuration and exposed buckets and long-standing ones around vulnerable ports and infrastructure. CEO George Kurtz says CrowdStrike's recent purchase of Reposify will help customers defend their priority assets.

►

Attack Surface Management

Splunk CEO on Enriching the SIEM With UEBA and Threat Intel

Latest

Fraud Management & Cybercrime

Massive Ransomware Campaign Targets VMware ESXi Servers

Prajeet Nair • February 4, 2023

A massive automated ransomware campaign is targeting VMware ESXi hypervisors worldwide, warns CERT-FR, the French government's computer emergency readiness team that's part of the National Cybersecurity Agency of France. VMware is advising customers to patch affected servers and scan for malware.

Cyberwarfare / Nation-State Attacks

Hackers Posing as Ukrainian Ministry Deploy Info Stealers

Mihir Bagwe • February 3, 2023

Ukrainian and Polish cyber defenders are warning against a slew of phishing websites that mimic official sites, in particular a page that mimics the Ministry of Foreign Affairs of Ukraine. A hacking group likely comprised of Russian speakers uses the pages to lure users into downloading software.

Fraud Management & Cybercrime

Indian Official Highlights Djvu Ransomware as Threat

Jayant Chakravarti • February 3, 2023

An Indian cybersecurity official highlighted Djvu ransomware as a threat, saying that "maximum companies" are attacked by the malware, a variant of the Stop family of ransomware. Djvu often infects computers by masquerading as software whose activation key has been cracked by hackers.

Fraud Management & Cybercrime

Cyberattack Wave on Healthcare Reaches Florida and Maryland

Marianne Kolbasuk McGee • February 3, 2023

A Florida healthcare system says it is diverting emergency patients and is only accepting certain Level 1 trauma cases while it deals with an "IT security incident." Meanwhile, a Maryland hospital is responding to its own ransomware incident.

Leadership & Executive Communication

World Economic Forum's Cybersecurity Outlook 2023 Highlights

Anna Delaney • February 3, 2023

According to the World Economic Forum, geopolitical instability has helped to close the perception gap between business and cyber leaders' views on the importance of cyber risk management, and "91% of all respondents" believe that "a far-reaching, catastrophic cyber event" is on the horizon.

Fraud Management & Cybercrime

ISMG Editors: Does US Takedown Mark Hive Group's Demise?

Anna Delaney • February 3, 2023

In the latest weekly update, ISMG editors discuss the lasting effects of the takedown of the Hive ransomware group, why the U.S. government is warning of a surge in Russian DDoS attacks on hospitals, and why the lack of transparency in U.S. breach notices is creating more risk for consumers.

Cloud Security

Cyber Insurer Sees Remote Access, Cloud Databases Under Fire

Mathew J. Schwartz • February 3, 2023

Criminals lately have been prioritizing two types of attacks: exploiting Remote Desktop Protocol and penetrating cloud databases. So warns cyber insurer Coalition, based on analyzing in-the-wild attacks seen in 2022 via underwriting and claims data, scans of IP addresses and honeypots.

Blockchain & Cryptocurrency

How Much Did BonqDAO Lose in Smart Contracts Hack?

Rashmi Ramesh • February 2, 2023

Another day, another crypto hack: A hacker on Wednesday exploited a smart contract vulnerability on a decentralized platform to steal cryptocurrency. The attacker got away with either $120 million or $1 million, depending on whom you ask. It's complicated.

Artificial Intelligence & Machine Learning

Scottish Schools' Use of Facial Recognition Violated GDPR

Akshaya Asokan • February 2, 2023

A Scottish school system decided not to use facial recognition in its secondary school cafeterias after international outcry. The U.K. Information Commissioner's Office said Tuesday that the North Ayrshire Council failed to obtain freely given consent for the system.

Healthcare

Feds Smack Banner Health With $1.25 Million Fine in Breach

Marianne Kolbasuk McGee • February 2, 2023

Federal regulators hit Banner Health, which operates hospitals and other care facilities in multiple states, with a $1.25 million HIPAA settlement in the wake of a 2016 hacking incident that affected nearly 3 million individuals. Banner Health will also implement a corrective action plan.

Governance & Risk Management

Dragos CEO on Opening Execs' Eyes to OT Security Threats

Michael Novinson • February 2, 2023

Executives underestimated the security risk associated with operational technology based on the erroneous belief that OT networks are highly segmented or air gapped. But COVID-19 made executives realize their OT networks are more connected than they previously thought, says Dragos CEO Robert M. Lee.

Cyberwarfare / Nation-State Attacks

Russian Hackers Focused on Espionage, Not System Destruction

Mihir Bagwe • February 2, 2023

While malicious wipers have stolen most of the headlines in the Russia-Ukraine cyberwar, investigators say Russians are now using modified GammaLoad and GammaSteel info stealer malware to spy on compromised government employee accounts and avoid detection. The attack begins with a phishing email.