It was reported this morning that research from Google suggests Ransomware is here to stay. The search giant created thousands of virtual victims of ransomware to expose the payment ecosystem surrounding the malware type. Most of the money was made in 2016 as gangs realised how lucrative it was, revealed a talk at Black Hat. Two types of ransomware made most of the money, it said, but other variants are starting to emerge.
Police have warned that household appliances which connect to the internet will increasingly be hacked by criminals seeking to steal your identity, rob your home or bank accounts. The chief constable, Mike Barton, who leads the National Police Chiefs Council on crime operations, warned about the dangers of the ‘internet of things’ as more ordinary household items become connected. Commenting on the story is Cesare Garlati, Chief Security Strategist at the prpl Foundation:
News broke yesterday that a data breach at Newcastle City Council has led to the details of adopted children being exposed. Names, addresses and birth dates of 2,743 adopted children, alongside details of parents, social workers and former adoptees, were included in a spreadsheet attached to the city’s annual adoption summer party. As many as 77 people received the attachment.
News broke over the weekend that Microsoft is taking down suspected Russian hackers using American trademark law, with a year-long legal battle tentatively drawing to a close this week. Microsoft filed suit against the hackers last year for computer intrusion and infringing on its trademarks. It alleged the John Does responsible, through an operation called “Strontium,” have broken into Microsoft accounts and stolen info from Microsoft customers.
Most companies worldwide are failing to measure cyber security effectiveness and performance, according to the latest cyber security report from Thycotic. According to the findings, more than half of the 400 respondents in the survey, 58%, scored an “F” or “D” grade when evaluating their efforts to measure their cyber security investments and performance against best practices. The results highlights the concerns many have towards cyber attacks but with organisations making blind security investments, is this handing control back to the hackers? Javvad Malik, security advocate at AlienVault commented on the news, saying:
News broke earlier today that in an effort to keep Android users safe from malware on their phones, Google is rolling out its Play Protect security features to all devices running Google Mobile Services 11 and up. Google says it’ll automatically scan apps from the Play store that are installed on your phone to ensure there’s no funny business; apps that don’t play nice will be blocked or removed from your device.
News broke earlier today that US-based and international courier delivery service FedEx admitted on Monday that some of its systems were significantly affected by the NotPetya ransomware, and some of the damage may be permanent. FedEx was just one of the many businesses across the world hit by the NotPetya ransomware, a cyber-weapon designed to attack organizations in the Ukraine, but which spread to other countries via VPNs and internal networks.
According to recent news reports, millions of products ranging from airport surveillance cameras, sensors, networking equipment and IoT devices are vulnerable to a flaw that allows attackers to remotely gain control over devices or crash them. The vulnerability, named Devil’s Ivy, was identified by ?researchers who singled out high-end security cameras manufactured by Axis Communications. The researchers at Senrio said that 249 models of 251 Axis cameras are vulnerable to Devil’s Ivy.