Christopher Krebs, former director of CISA, refuted claims that the presidential election was fraudulent.

Fired CISA Director Refutes Election Fraud Allegations

Jeremy Kirk • November 30, 2020

Ex-CISA Director Christopher Krebs revealed in a "60 Minutes" interview what made officials confident that the election results were accurate: paper ballots. Krebs didn't mention President Trump by name, but refuted claims by his administration and personal lawyer, Rudy Giuliani, that the election was fraudulent.

Breach Notification

Cybersecurity Leadership: A Fresh Look at Fraud

Latest

Fraud Management & Cybercrime

Sizing Up Synthetic DNA Hacking Risks

Marianne Kolbasuk McGee • November 30, 2020

Could hackers inject malicious code that compromises the synthetic DNA supply chain and ultimately tricks bioengineers into inadvertently developing dangerous viruses or toxins? A new research report says that's a growing concern and calls for robust security measures.

Breach Notification

Canon: Ransomware Attack Exposed Employee Data

Prajeet Nair • November 30, 2020

Canon USA has finally acknowledged that a ransomware attack earlier this year involved the theft of corporate data, including such employee information as Social Security numbers and financial account numbers.

Cybercrime

CISA Warns of Password Leak on Vulnerable Fortinet VPNs

Akshaya Asokan • November 28, 2020

CISA is warning about a possible password leak that could affect vulnerable Fortinet VPNs and lead to further exploitation. The latest agency notice comes just days after hackers began publishing what they claim are leaked passwords on underground forums, according to researchers.

Cybercrime

EU Law Enforcement Prevents $47.5 Million in Payment Fraud

Akshaya Asokan • November 27, 2020

Europol, along with the other law enforcement agencies in Europe, prevented payment fraud losses of $47.5 million by targeting fraudsters who were selling stolen card data on darknet websites known as card shops.

Cybercrime

Rise of the Bots: Criminal Attacks Grow More Automated

Mathew J. Schwartz • November 27, 2020

Criminals continue to rely on automated bots for phishing attacks, web scraping, credential stuffing and more. But while gangs previously needed to amass large, powerful botnets to be effective, now they need relatively few devices, says Group-IB CTO Dmitry Volkov.

3rd Party Risk Management

Government Watchdog Calls for 5G Cybersecurity Standards

Prajeet Nair • November 27, 2020

The U.S. Government Accountability Office is urging policymakers to adopt coordinated cybersecurity monitoring of 5G networks, to ensure a safe rollout of the new technology.

Business Continuity Management / Disaster Recovery

Hot Cybercrime Trend: Enterprise-Scale Ransomware Hits

Anna Delaney • November 27, 2020

The latest edition of the ISMG Security Report features an analysis of how cybercriminals are ditching banking Trojans in favor of ransomware attacks. Also featured: Defending against deep fakes; supporting a dispersed workforce.

Application Security

Productivity Tools May Be Monitoring Workers' Productivity

Mathew J. Schwartz • November 27, 2020

Warning to workers: Your productivity tools may also be tracking your workplace productivity, and your bosses may not even know it. But as more workplace surveillance capabilities appear, legal experts warn that organizations must ensure their tools do not violate employees' privacy rights.

Cybercrime as-a-service

Ransomware Attack Targets Baltimore County Public Schools

Akshaya Asokan • November 26, 2020

Officials with the Baltimore County Public Schools are investigating a ransomware attack that disrupted virtual learning for students this week. Now, the district has been forced to call-off its virtual classes until next Monday.

Anti-Phishing, DMARC

Interpol Busts Massive Nigerian BEC Gang

Akshaya Asokan • November 26, 2020

Interpol, Nigerian law enforcement agencies and security firm Group-IB have collectively uncovered a massive Nigerian business email compromise gang that was active across more than 150 countries. Three suspected members have been arrested in Nigeria.

Cybercrime

Updated Trickbot Malware Is More Resilient

Doug Olenick • November 24, 2020

The gang operating Trickbot is continuing its activities despite recent takedown efforts, rolling out two updates that make the malware more difficult to kill, according to the security firm Bitdefender.

Alleged Fraud at Billing Firm Spotlights Insider Risks

Marianne Kolbasuk McGee • November 24, 2020

Federal prosecutors have announced the indictment of an employee of a Florida medical billing company in a case involving alleged identity theft and Medicaid fraud.