CISA Expanding Mandatory Vulnerability Disclosure Program

CISA Expanding Mandatory Vulnerability Disclosure Program

Application Security , Critical Infrastructure Security , Cybercrime Security Agency Will Use Bugcrowd, EnDyna for Platform Scott Ferguson (Ferguson_Writes) • June 8, 2021     The U.S. Cybersecurity and Infrastructure Security Agency is preparing to expand its vulnerability research and disclosure program, which is now mandatory for nearly all executive branch agencies within the federal…

Colonial CEO at Senate Hearing Details Ransomware Attack

Colonial CEO at Senate Hearing Details Ransomware Attack

Critical Infrastructure Security , Cybercrime , Cybercrime as-a-service Company’s IT Team Was Unaware the VPN Exploited to Gain Entry Existed Doug Olenick (DougOlenick) • June 8, 2021     Colonial Pipeline Co. CEO Joseph Blount testifying on Tuesday before the Senate Homeland Security and Governmental Affairs Committee Colonial Pipeline Co. CEO Joseph Blount defended his…

Here’s what we learned from the Colonial Pipeline CEO’s testimony today

Here’s what we learned from the Colonial Pipeline CEO’s testimony today

In recent weeks, cybercriminals have increasingly targeted organizations that play critical roles across broad swaths of the US economy. The fallout from those attacks show how hackers are now causing chaos for everyday Americans at an unprecedented pace and scale. Energy Secretary Jennifer Granholm on Sunday warned that “very malign actors” had the US in their sights…

NCSC Warns of Surge in Ransomware Attacks Against Schools

NCSC Warns of Surge in Ransomware Attacks Against Schools

Critical Infrastructure Security , Cybercrime , Cybercrime as-a-service Agency Notes Attacks Have Spiked Since February Akshaya Asokan (asokan_akshaya) • June 8, 2021     Ransomware actors continue to target schools and universities across the U.K., and attacks have surged since February, a new report by the U.K’s National Cyber Security Center warns. The agency has…

Latvian National Indicted for Helping Develop and Spread Trickbot Malware – HOTforSecurity

Latvian National Indicted for Helping Develop and Spread Trickbot Malware – HOTforSecurity

US authorities charged Alla Witte for helping build TrickBot, a type of malware that was active for many years in a worldwide campaign, defrauding numerous people. Taking down much of TrickBot was a group effort involving multiple countries and coordination that doesn’t usually happen with similar threats. While all of Trickbot’s infrastructure was eventually primarily…

US recovers most of Colonial Pipeline bitcoin ransom

US recovers most of Colonial Pipeline bitcoin ransom

The chief executive of the massive fuel pipeline hit by ransomware last month is expected to detail his company”s response to the cyberattack and to explain his decision to authorise a multimillion-dollar payment when he testifies before Congress this week. Colonial Pipeline CEO Joseph Blount will face the Senate Homeland Security Committee on Tuesday, one…

Department of Justice Reclaims Millions of Dollars Paid to Colonial’s Attackers

Department of Justice Reclaims Millions of Dollars Paid to Colonial’s Attackers

The US Justice Department has recovered most of the multimillion-dollar ransom payment The Guardian reports.   The operation to recover cryptocurrency from the Russian-based hacking group is the first carried out by the Biden administration’s task force specializing in ransomware. Moreover, it reflects what officials say is an increasingly aggressive approach to dealing with a…

US-Mexico: ‘Both sides trying to work out relationship’

US-Mexico: ‘Both sides trying to work out relationship’

US Vice-President Kamala Harris is due to hold talks with Mexico’s President Andrés Manuel López Obrador on Tuesday. Andrew Selee, president of the Migration Policy Institute told BBC World News he thought both sides would be trying to figure out what the framework was going to be for a new relationship. “When Donald Trump was…

US Prosecutors Charge Latvian Woman in Trickbot Gang Case

US Prosecutors Charge Latvian Woman in Trickbot Gang Case

Cybercrime , Cybercrime as-a-service , Cyberwarfare / Nation-State Attacks Case Is First Test for DOJ’s Ransomware and Digital Extortion Task Force Scott Ferguson (Ferguson_Writes) • June 7, 2021     A 55-year-old Latvian woman has been charged with helping to develop code for the Trickbot cybercriminal gang as well as allegedly stealing banking credentials from…