Security

0 Comments
Intelligence-led security firm FireEye yesterday announced the acquisition of Respond Software, a company that uses automation to assist customers to comprehend and investigate security incidents. The transaction closed on November 18, 2020, and is valued at approximately $186m in cash and stock.  FireEye said that the acquisition of Respond Software will open new market opportunities to deliver eXtended Detection and Response
0 Comments
A data breach at an Iowa hospital has exposed the Social Security numbers and private medical information of more than 60,000 patients.  Mercy Iowa City began notifying patients on November 13 of a data breach that occurred in spring 2020 after an employee’s email account was accessed by a threat actor.  The hospital detected the breach
0 Comments
A former Green Beret in the United States Army has admitted passing classified information to Russian intelligence agents. Peter Rafael Dzibinski Debbins was arrested in August 2020 and charged with conspiring to provide United States national defense information to agents of a foreign government. On November 18, the 45-year-old Gainesville, Florida, resident pleaded guilty to the charge and now faces a
0 Comments
An Oregon county hit by wildfires and a fall surge in Covid-19 cases is now dealing with the fallout from a cyber-attack. Jackson County’s website is currently down following a recent ransomware attack on the county’s web-hosting service provider, Managed.com. The company took down all its servers on Monday after reportedly becoming the latest target of REvil.  A status update issued by
0 Comments
An Irish cyber-thief has been jailed for his part in a SIM-swap conspiracy that robbed victims of their life savings. Conor Freeman was identified by US Homeland Security as a member of a criminal group that stole over $2m worth of cryptocurrency from multiple victims in 2018. Freeman, of Dun Laoghaire, Dublin, pleaded guilty to stealing cryptocurrency, dishonestly operating a
0 Comments
by Paul Ducklin We know what you’re thinking: “Another year; another vendor; another threat report… …and when I open it, I’ll be stuck in a thinly disguised product brochure.” Well, not this one. We’ve combined research from a number of threat prevention groups inside Sophos, including SophosLabs, Sophos Managed Threat Response, Sophos Rapid Response, Sophos
0 Comments
American telecommunications company Verizon today released its first ever data-driven report on cyber-espionage attacks.  The 2020 “Cyber Espionage Report” (CER) draws from seven years of Verizon “Data Breach Investigations Report” (DBIR) content and more than 14 years of the company’s Threat Research Advisory Center (VTRAC) Cyber-Espionage data breach response expertise.  Verizon said that it published the CER
0 Comments
Data breaches in the healthcare industry are likely to triple in volume in the coming year, according to a new report by Black Book Market Research. The “2020 State of the Healthcare Cybersecurity Industry” report is based on a survey of 2,464 security professionals from 705 provider organizations. Respondents were asked to identify gaps, vulnerabilities, and deficiencies
0 Comments
An international construction engineering and mobility services company is joining forces with a software business to launch a new center that aims to protect the cybersecurity of the railway industry. The new partnership between France-based Egis Group and Israeli tech company Cylus was announced today along with their plan to construct a Center for Excellence for advanced, rail-focused cybersecurity services. Built in line
0 Comments
A British ticketing company has been financially penalized over a 2018 data breach that exposed the personal information of millions of customers across Europe.  The Information Commissioner’s Office (ICO) has fined Ticketmaster UK Limited £1.25m for failing to keep its customers’ personal data secure. Ticketmaster issued a data breach notice in June 2018 after a third-party platform provider Inbenta Technologies was infected with
0 Comments
A joint operation by Brazil and the United States has led to the arrest of 113 people suspected of producing child sexual abuse material (CSAM) and sharing it online.  US Immigration and Customs Enforcement (ICE) Homeland Security Investigations (HSI) and the Brazil Ministry of Justice and Public Security (MJSP) Secretariat for Integrated Operation (SEOPI) Cyber
0 Comments
A Texas security professional’s dream of creating a comic book publishing company dedicated to titles about hacking is edging closer to reality. Robert Willis started a campaign on Kickstarter to self-finance and create a new publishing company named Paraneon. The company will specialize in cyber-punk and sci-fi comics that are written by hackers and for hackers to inspire young
0 Comments
by Paul Ducklin In this episode: When payments go astray, why “just in case” cybersecurity warnings do more harm than good, how to shop safely on Black Friday and beyond, and (oh no!) what to do when all your emails disappear. With Kimberly Truong, Doug Aamoth and Paul Ducklin. To register for the Sophos Evolve
0 Comments
An Iowa medical billing and reimbursements services company is boosting its cybersecurity after suffering a ransomware attack. An unknown threat actor hit Timberline Billing Service LLC with malware between February 12 and March 4, 2020. After gaining access to the company’s network, the attacker encrypted files and removed information. Timberline said it was unable to determine precisely
0 Comments
Access to Pakistan International Airlines’ network is being offered for sale on the cyber underground, according to threat researchers in Israel.  A team at dark net threat intelligence firm KELA spotted a threat actor touting domain admin access to the airline for $4,000 on two Russian-speaking illegal online forums and one English-speaking forum that they had been monitoring.  From
0 Comments
by Paul Ducklin As we’ve warned before, phishing via SMS, or smishing for short, is still popular with cybercriminals. Sure, old-fashioned text messages have fallen out of favour for personal communications, superseded round the world by instant messaging apps such as WhatsApp, WeChat, Instagram, Telegram and Signal. But for brief, one-off business communications such as
0 Comments
A former contractor with the United States Department of Justice has admitted her role in exposing the identities of cooperating witnesses in a federal drug-trafficking investigation.  Danielle Taff was employed as a contractor paralegal at the US Attorney’s Office for the Southern District of Iowa from approximately June 2017 to June 2018. The 37-year-old resident of Ankeny,
0 Comments
The United States has seized more than $1bn in cryptocurrency believed to be proceeds from a defunct online marketplace that was notorious for selling unlawful goods and services.  On November 5, the Department of Justice filed a civil complaint to seek the forfeiture of thousands of Bitcoins seized by law enforcement on November 3, 2020, from an account associated
0 Comments
The United States and Brazil have teamed up to take down multiple websites and apps that were selling pirated versions of American-made movies and TV shows. In a joint effort dubbed “Operation 404,” seizure warrants were executed against three domain names of commercial websites engaged in the illegal reproduction and distribution of copyrighted works.  The federal law enforcement
0 Comments
Police in San Francisco have asked the unidentified victims of two men charged with cyber-stalking and child sexual exploitation to come forward.  East Bay residents Delaney Tang and Vincenz Sison were taken into custody on November 3 on suspicion of extorting sexually explicit videos and images from dozens of underage minors. Appearing yesterday in federal court
0 Comments
The United States has seized additional domain names it claims were being used by Iran’s Islamic Revolutionary Guard Corps (IRGC) to spread disinformation around the world.  On October 27, the Department of Justice announced the seizure of 92 domains that were allegedly being used unlawfully by the IRGC. This latest seizure, announced yesterday, brings the total number of IRGC
0 Comments
by Paul Ducklin In this episode: a zero-day bug in Chrome for Android, the imminent death of Adobe Flash, the evolution of “malware-as-a-service“, and the malware risks from image search. Also (oh! no!), why you should take care before you pair. Presenters: Kimberly Truong, Doug Aamoth and Paul Ducklin. Intro and outro music: Edith Mudge.