Crypto hacker offered reward after $600m heist

U.S. insurance giant CNA Financial reportedly paid $40 million to a ransomware gang to recover access to its systems following an attack in March, making it one of the most expensive ransoms paid to date. The development was first reported by Bloomberg, citing “people with knowledge of the attack.” The adversary that staged the intrusion…

One of the largest disruptions of U.S. critical infrastructure by cyber-attack – the Colonial Pipeline Hack – occurred on Friday and continues to develop.  Here’s what you need to know.  The Colonial Pipeline company operates a pipeline transporting gasoline, diesel, and natural gas from Texas to New Jersey, serving most of the East Coast. A…

Cybercrime , Fraud Management & Cybercrime , Fraud Risk Management PDF Documents Stuffed With SEO Keywords Lead to Malware Attacks Prajeet Nair (@prajeetspeaks) • June 16, 2021     SEO poisoning attacks use thousands of PDFs stuffed with links to malware. (Image: Pixabay) SolarMarker backdoor malware operators are using “SEO poisoning” techniques to deploy the…

New malware that has been active for over a year has compromised Windows containers in order to further hack Kubernetes clusters and install backdoors in them with the aim of further malicious activity. Originally developed by Google and now maintained by the Cloud Native Computing Foundation, Kubernetes is an open-source system for automating the deployment,…

Hundreds of American businesses were hit Friday by an unusually sophisticated ransomware attack that hijacked widely used technology management software from a Miami-based supplier called Kaseya. The attackers changed a Kaseya tool called VSA, used by companies that manage technology at smaller businesses. They then encrypted the files of those providers’ customers simultaneously. Security firm…

Cybercrime , Cybercrime as-a-service , Fraud Management & Cybercrime New JSSLoader Variant is Being Spread by TA543 Group Akshaya Asokan (asokan_akshaya) • June 26, 2021     A cybercrime group tracked as TA543 by security firm Proofpoint is deploying a new variant of a malware loader to target victims as part of a phishing campaign,…