Latest

Breach Notification

Union Benefits Administrator Says Data Deleted in Hack

Marianne Kolbasuk McGee  •  June 14, 2021

A Seattle-based benefits administrator for unionized home healthcare and nursing home workers has reported a hacking incident affecting 140,000 individuals that involved deleting certain data.

Fraud Management & Cybercrime

Will Ransomware Attacks Push Congress to Enact Regs?

Scott Ferguson  •  June 14, 2021

After hearings in the Senate and House on a spate of ransomware attacks that have put the nation's critical infrastructure in danger, some security experts say Congress may be poised to take action to create greater regulatory oversight of cybersecurity within certain industries.

►

Privileged Access Management

Using PAM in an OT Environment

Suparna Goswami  •  June 14, 2021

To enhance privileged access management for operational technology, organizations should use specialized remote access solutions for vendors that are allowed to access OT networks, says Felix Gaehtgens, an analyst at Gartner.

Cybercrime

Avaddon Ransomware Operation Calls It Quits, Releases Keys

Mathew J. Schwartz  •  June 14, 2021

The prolific Avaddon ransomware-as-a-service operation has announced its closure and released 2,934 decryption keys for free. Has the increased focus by Western governments on combating ransomware been driving this and other operations to exit the fray?

Breach Notification

McDonald's Breach Exposes Korean, Taiwanese Customer Data

Doug Olenick  •  June 12, 2021

Fast-food giant McDonald's is acknowledging a data breach that affected some customer and company data from its locations in Korea and Taiwan. Phone numbers, delivery and email addresses were exposed. Payment data, however, has not been compromised.

Blockchain & Cryptocurrency

How Did FBI Recover Colonial Pipeline's DarkSide Bitcoins?

Mathew J. Schwartz  •  June 11, 2021

Cryptocurrency has a reputation for being tough to trace - no wonder anonymity-craving criminals favor using it. In reality, cryptocurrencies don't make users anonymous. But just how did the FBI recover most of the bitcoins paid by Colonial Pipeline to the DarkSide ransomware operation?

Cybercrime

DOJ Shut Down Slilpp Marketplace for Stolen Credentials

Akshaya Asokan  •  June 11, 2021

The U.S. Justice Department has shut down the Slilpp cybercrime marketplace, which sold stolen credentials related to bank accounts and other payment mechanisms, in a multinational operation.

►

3rd Party Risk Management

ISMG Editors' Panel: The FBI's Global Cryptophone Sting

Anna Delaney  •  June 11, 2021

Criminals tricked into using an FBI-run encrypted messaging app, Verizon's 2021 Breach Investigations Report and overcoming the challenges of recruiting cybersecurity professionals are among the latest cybersecurity topics to be featured for analysis by a panel of Information Security Media Group editors.

3rd Party Risk Management

Colonial Pipeline Ransomware Fallout: Congress Grills CEO

Anna Delaney  •  June 11, 2021

The latest edition of the ISMG Security Report features an analysis of lawmakers' grilling of Colonial Pipeline CEO Joseph Blount over his handling of the DarkSide ransomware attack. Also featured: How the FBI helped trick criminals into using an encrypted communications service that it was able to monitor.

Breach Notification

Ransomware Gang Goes Nuclear, Hitting US Weapons Contractor

Mathew J. Schwartz  •  June 11, 2021

A small U.S. nuclear weapons contractor has confirmed that it suffered a ransomware attack, resulting in the theft of data. Credit for the attack has been taken by the ransomware-as-a-service operation known as REvil, aka Sodinokibi, which the FBI recently tied to the attack against meatpacking giant JBS.

Fraud Management & Cybercrime

RSA Spins Off Fraud and Risk Business

Doug Olenick  •  June 10, 2021

RSA Security LLC has spun off its fraud and risk intelligence business into a stand-alone company named Outseer. The new company will be led by Reed Taussig as CEO, and it will serve a worldwide customer and partner community.

Cybercrime

Ransomware to Riches Story: JBS Pays Criminals $11 Million

Mathew J. Schwartz  •  June 10, 2021

Is it any wonder that criminals keep flocking to ransomware when their individual haul from a well-executed digital heist can be worth $11 million? That's the amount paid to the REvil ransomware gang by meatpacker JBS USA, after its systems were crypto-locked on May 30.