Crypto hacker offered reward after $600m heist

Finance & Banking , Industry Specific , Security Operations Regulator Cites Email Takeovers, Inadequate Incident Response Dan Gunderman (dangun127) • September 1, 2021     (Photo: Securities and Exchange Commission via Flickr) The U.S. Securities and Exchange Commission sanctioned eight financial firms for alleged failures related to cybersecurity policies and procedures, each stemming from email…

Critical Infrastructure Security , Cybercrime , Cybercrime as-a-service Costs So Far Total Nearly $113 Million, Including $91.6 Million in Lost Revenue Marianne Kolbasuk McGee (HealthInfoSec) • August 13, 2021     Scripps Health reports that a recent ransomware incident has already cost the entity nearly $113 million The recent ransomware attack that disrupted Scripps Health’s…

Details have emerged about a high severity security vulnerability affecting a software driver used in HP, Xerox, and Samsung printers that has remained undetected since 2005. Tracked as CVE-2021-3438 (CVSS score: 8.8), the issue concerns a buffer overflow in a print driver installer package named “SSPORT.SYS” that can enable remote privilege and arbitrary code execution….

Spyware produce by the Israeli surveillance firm NSO Group has been abused by governments to target dissenting journalists, activists, lawyers and more, an investigation by human rights groups and media organizations has found. The Pegasus spyware was produced with the intention of targeting terrorists and other criminals, but an investigation into a huge data leak…

Moody’s Corporation and BitSight announced a collaborative effort aimed at helping the companies’ customers identify and quantify cybersecurity risk and potential for financial exposure, according to a Monday (Sept. 13) press release. As part of the joint effort, Moody’s will invest $250 million in BitSight, a cybersecurity ratings platform. In turn, BitSight will purchase VisibleRisk,…

NVIDIA Windows GPU Display Driver for Windows, all versions, contains a vulnerability in the kernel driver (nvlddmkm.sys) where a NULL pointer dereference may lead to system crash.