Cybercrime , Fraud Management & Cybercrime , Fraud Risk Management Affiliate-Driven Ransomware-as-a-Service Operations Keep Generating Big Profits Mathew J. Schwartz (euroinfosec) • May 11, 2021 Statements posted to DarkSide’s data leak site “It’s not personal, Sonny. It’s strictly business.” See Also: Live Webinar | Software Security: Prescriptive vs. Descriptive That immortal…
Cybersecurity firm Rapid7 revealed that an unauthorized party accessed some of its source code in a security incident linked to the Codecov supply-chain attack. Last month, Codecov disclosed a security incident involving its Bash Uploader script, a tool that provides a framework and language-agnostic method for sending coverage reports to Codecov. The company…
The latest edition of the ISMG Security Report features an analysis of the Colonial Pipeline ransomware attack and the response. In this report, you’ll hear (click on player beneath image to listen): The ISMG Security Report appears on this and other ISMG websites on Fridays. Don’t miss the April 30 and May 7 editions, which…
[co-author: Tawanna Lee] On May 12, 2021, President Biden issued the long-expected Executive Order on Improving the Nation’s Cybersecurity (“EO” or “Order”). The EO comes amidst a series of high-profile cyber-attacks on the Nation and its critical infrastructure, Information and Communications Technology (ICT) supply chain providers, and federal contractors, adding a heightened sense of urgency…
A British trade union is demanding an apology from the West Midlands Trains rail company for running a phishing readiness test disguised as a bonus payment reward for staff that worked through the Covid-19 pandemic. The Transport Salaried Staffs’ Association (TSSA) published the text of the phishing email, which was made to look like it…
Critical Infrastructure Security , Cybercrime , Cybercrime as-a-service Company Says It Will Take Several Days to Restore Supply Chain Scott Ferguson (Ferguson_Writes) • May 12, 2021 Photo: Pete D via Flickr/CC Colonial Pipeline Co. announced Wednesday that it had restarted its operations following a ransomware attack last Friday that forced the company to…
Critical Infrastructure Security , Cybercrime , Cybercrime as-a-service Company Says It Will Take Several Days to Restore Supply Chain Scott Ferguson (Ferguson_Writes) • May 12, 2021 Photo: Pete D via Flickr/CC Colonial Pipeline Co. announced Wednesday that it had restarted its operations following a ransomware attack last Friday that forced the company to…
Critical Infrastructure Security , Cybercrime , Cybercrime as-a-service Company Says It Will Take Several Days to Restore Supply Chain Scott Ferguson (Ferguson_Writes) • May 12, 2021 Photo: Pete D via Flickr/CC Colonial Pipeline Co. announced Wednesday that it had restarted its operations following a ransomware attack last Friday that forced the company to…
Cybersecurity Biden signs much-anticipated cybersecurity executive order By Justin Katz May 12, 2021 President Joe Biden on Wednesday signed his long-awaited executive order designed to confront the myriad of cybersecurity challenges facing the country — ranging from the supply chain attack that compromised nine federal agencies to ransomware that ultimately shut down…
WASHINGTON (REUTERS) – Colonial Pipeline began to slowly restart the nation’s largest fuel pipeline network on Wednesday (May 12) after a ransomware attack shut the line, triggering fuel shortages and panic buying in the south-eastern United States. It will take several days for the 5,500 mile (8,850km) pipeline to return to normal operations, Colonial said,…
