A hacker that uploaded ransom notes on nearly 23,000 MongoDB databases left exposed online without passwords has given his potential victims until tomorrow to pay a $140 ransom, or possibly report the breach to local GDPR authorities. According to recent ZDNet story, the hacker used an automated script to scan for
Data Breach
NetWalker ransomware group claims attack on Fort Worth transportation agency
Another Texas-based government institution has apparently fallen victim to ransomware actors, as the cybercriminals behind the malicious encryptor NetWalker have published online evidence of an attack on Trinity Metro, a transit agency that operates bus and commuter rail transportation services in Fort Worth and its nearby Tarrant County suburbs. According to
Xerox apparent victim of Maze attack
It appears that Xerox is among the victims of Maze ransomware attackers, if screenshots posted by the ransomware’s operators are legitimate. The hackers pilfered more than 100GB of information and are threatening to publish it, according to a report in BleepingComputer, which cited the ransom note as saying, “After the payment
Eight cities using Click2Gov targeted in Magecart skimming attacks
Since April 10, eight cities in three states using the Click2Gov web-based platform to collect payments for services have been hit with Magecart card-skimming attacks that still appear active. Credit card information including card number, expiration date and CVV, as well as personal information such as name and contact address,
VMware Carbon Black Cloud
VMWare Carbon Black Cloud does the work of multiple endpoint security solutions, using only one agent and console for more efficient operation. This software applies analytics and machine learning to the endpoint and cloud to identify and reduce vulnerabilities and misconfigurations and make systems harder to compromise. The use of multiple
BlackBerry Spark
BlackBerry Spark operates as an endpoint-centric and prevention-focused security suite. It offers a range of security capabilities and visibility to protect people, devices, networks, and apps, while its AI-backed malware and threat detection stops malicious processes before they execute. The BlackBerry Spark suite consists of three modules: BlackBerry Protect, BlackBerry
Glupteba malware leverages blockchain as a communications channel
Glupteba malware does something novel: It uses the bitcoin blockchain as a communications channel to receive updated configuration information. That’s important because malware always needs a way to go back to its home base, preferably without being detected, according to a paper released this week by Sophos Labs researchers. The new
Ex-CIA exec: Covid-19 has created ideal ‘crisis’ conditions for malicious hackers
Companies trying to stave off business disruption caused by the global Covid-19 pandemic may be ripe for compromise as they introduce new risks in the scramble to maintain business continuity, warned a retired senior CIA executive in a keynote presentation Wednesday at the InfoSec World 2020 digital conference. In essence, the
India surpasses U.S., others in number of ethical hackers
India’s ethical hackers now represent the biggest nationality within Bugcrowd’s network of security researchers, according to the firm’s annual report issued yesterday titled of “Inside the Mind of a Hacker.” The share of the country’s respondents jumped 83 percent from 2019, putting India in first place ahead of the U.S., reported
Web-skimming scam infected e-commerce sites on three continents
About two dozen e-commerce websites in North America, South America and Europe were recently “web-skimmed” through a ruse pretending to be Google Analytics. Despite differences in merchandise sold, including digital equipment, cosmetics, food products and spare parts, what the web store victims had in common was not picking up a purposefully