One week into the newly formed Ransomware Task Force initiative, the organization has proposed key actions to combat the ongoing and evolving threat. The Ransomware Task Force Thursday published an 81-page report that presented five priority recommendations to governments to better respond to and prevent ransomware attacks. The task force, which was announced last week
Month: April 2021
Earlier this week, Roku warned customers that the YouTube TV app may be removed from its streaming media players and TVs, and alleged that Google was leveraging its monopoly power during contract negotiations to ask for unfair terms. Today, Roku is announcing the deal has fallen through — meaning YouTube TV will no longer be
A year into the pandemic, ESET reveals new research into activities of the LuckyMouse APT group and considers how governments can rise to the cybersecurity challenges of the accelerated shift to digital Earlier this year, a well-known APT group dubbed LuckyMouse (aka Emissary Panda, APT27) began exploiting several zero-day Microsoft Exchange Server vulnerabilities. Its end
by Paul Ducklin We investigate whether AirDrop is really as dangerous as researchers claimed. We discuss the pestiferous problem of fake Linux bugs submitted as an academic exercise. We review the latest Sophos Ransomware Report and uncover uncomfortable truths about paying up. With Kimberly Truong, Doug Aamoth and Paul Ducklin. Intro and outro music by
The maintainers of Composer, a package manager for PHP, have shipped an update to address a critical vulnerability that could have allowed an attacker to execute arbitrary commands and “backdoor every PHP package,” resulting in a supply-chain attack. Tracked as CVE-2021-29472, the security issue was discovered and reported on April 22 by researchers from SonarSource,
A task force organized by the Institute for Security and Technology has urged the White House to tackle the rise in ransomware attacks and make it harder for cybercrimes to be committed. Law enforcement agencies, cybersecurity experts, and governments came together to make a series of recommendations to the Biden administration that aim to disrupt the illegal
Nearly a year after its last layoff, online coding bootcamp Lambda School just announced more cuts amid a broader structuring. In a blog post, CEO and founder Austen Allred said that the startup, which raised a $74 million Series C in August, is laying off 65 employees. The roles that were cut span senior product,
Gr4vy, (pronounced ‘gravy’) is a cloud-native payments company with a “payment orchestration platform (POP)” that merges a Cloud platform with payments infrastructure. It’s also announcing a Series A funding round of $11.1M, led by Nyca Partners (a VC with a bench of partners who are ex-Visa ), with participation from Activant Capital (a fintech investor),
With on-premises infrastructure, securing server workloads and applications involves putting security controls between an organization’s network and the outside world. As organisations migrate workloads (“lift and shift”) to the cloud, the same approach was often used. On the contrary to lift and shift, many enterprise businesses had realized that in order to use the cloud
by Paul Ducklin If you have a PC or laptop with an Nvidia graphics card (colloquially known as a GPU, short for graphics processing unit), make sure you’ve installed any of the company’s April 2021 updates that you need. GPU cards affected by the bugs include those branded GeForce, RTX, Quadro, NVS and Tesla, on
Threat actors are increasingly adopting Excel 4.0 documents as an initial stage vector to distribute malware such as ZLoader and Quakbot, according to new research. The findings come from an analysis of 160,000 Excel 4.0 documents between November 2020 and March 2021, out of which more than 90% were classified as malicious or suspicious. “The
Law enforcement officers in the United States have arrested a man on suspicion of laundering hundreds of millions of dollars’ worth of Bitcoin (BTC) through a cryptocurrency mixing service. A crypto-mixing service—also known as a cryptocurrency tumbler—obscures the original source of potentially identifiable or “tainted” cryptocurrency by jumbling it up with other funds in a single
A startup that is helping over 125,000 neighborhood stores in India secure working capital, inventory from top brands, and work with e-commerce firms to boost revenues said on Thursday it has raised a new financing round as it looks to further its reach in the world’s second largest internet market. Pune-based ElasticRun said it has
Mac users are being urged to update to macOS Big Sur 11.3 as at least one threat group is exploiting the zero-day bug to sneak past the operating system’s built-in security mechanisms Apple has rolled out an update for its macOS Big Sur operating system to address a bevy of security flaws, including a vulnerability that
Group video calls will be coming to Telegram’s messaging platform next month with what’s being touted as a fully featured implementation, including support for web-based videoconferencing. Founder Pavel Durov made the announcement via a (text) message posted to his official Telegram channel today where he wrote “we will be adding a video dimension to our
While we’re enjoying the fruits of digital life—our eBooks, movies, email accounts, social media profiles, eBay stores, photos, online games, and more—there will come a time we should ask ourselves, What happens to all of this good stuff when I die? Like anything else we own, those things can be passed along through our estates
by Paul Ducklin When it comes to all the various types of malware out there, none has ever dominated the headlines quite as much as ransomware. Sure, several individual malware outbreaks have turned into truly global stories over the years. The LoveBug mass-mailing virus of 2000 springs to mind, which blasted itself into hundreds of
The Metropolitan Police Department (MPD) of the District of Columbia has become the latest high-profile government agency to fall victim to a ransomware attack. The Babuk Locker gang claimed in a post on the dark web that they had compromised the DC Police’s networks and stolen 250 GB of unencrypted files. Screenshots shared by the
A kindergarten teacher from Indiana has been charged with multiple counts of child exploitation and possessing child sexual abuse material (CSAM) following a cyber-tip. An investigation was launched into the online activities of 49-year-old Brian Lee Jakes in February after a tip was sent into the National Center for Missing and Exploited Children. The tipster said that
Founders Circle Capital, a nine-year-old, San Francisco-based investment firm that strikes agreements with private, venture-backed companies to buy some of the vested stock options of their founders and employees — so they can buy a house or just breathe a bit more easily — has closed its newest fund with $355 million in capital commitments,
A German law enforcement operation Sunday uninstalled all remaining Emotet malware from infected computers around the globe. The police action follows an international law enforcement operation in January coordinated by Europol and Eurojust that disabled Emotet infections by taking control of the infrastructure. Law enforcement officials used their control of this infrastructure to issue uninstall
German startup Wingcopter has launched a new autonomous delivery drone designed to remove a technical bottleneck hindering the growth of drone transport services. The Wingcopter 198, which was revealed Tuesday, is capable of making three separate deliveries per flight, the company said. Wingcopter has couched this multi-stop capability as a critical feature that will allow
If you’re like me, you love a good heist film. Movies like The Italian Job, Inception, and Ocean’s 11 are riveting, but outside of cinema these types of heists don’t really happen anymore, right? Think again. In 2019, the Green Vault Museum in Dresden, Germany reported a jewel burglary worthy of its own film. On
by Paul Ducklin Researchers in Germany say they reported what they consider to be an AirDrop privacy hole to Apple in 2019, but never heard back. So, they went away and worked on what they consider an improved version, dubbed Privacy Drop, and recently announced it to the world. Does this mean AirDrop is dangerous
Researchers from the University of Minnesota apologized to the maintainers of Linux Kernel Project on Saturday for intentionally including vulnerabilities in the project’s code, which led to the school being banned from contributing to the open-source project in the future. “While our goal was to improve the security of Linux, we now understand that it
A lawsuit has been filed by Nintendo of America against the alleged leader of an international video game piracy group. Canadian national Gary Bowser was arrested in October last year on suspicion of heading a criminal enterprise called Team Xecuter that the United States Department of Justice said created and sold illegal hacking devices. The circumvention devices enabled users
Tesla CEO Elon Musk wants to turn every home into a distributed power plant that would generate, store and even deliver energy back into the electricity grid, all using the company’s products. While the company has been selling solar and energy storage products for years, a new company policy to only sell solar coupled with
All that glitters is not gold – look out for fake celebrity endorsements and other con jobs that aren’t going out of fashion any time soon Online scams are one of the favorite ways criminals like to swindle unsuspecting victims out of their hard-earned money. And since variety is the spice of life, con artists
Orbillion Bio’s plans to make high end meats in a lab have investors lining up for a seat at the company’s cap table. Mere weeks after launching from Y Combinator’s famous accelerator program, the Silicon Valley-based potential purveyor of premium lamb loins, elk steaks, bison burgers and more has managed to haul in $5 million
Something you’ll want to know about all those movies, mp3s, eBooks, air miles, and hotel points you’ve accrued over the years: they’re digital assets that can factor into a divorce settlement. Understandably, several factors determine the distribution of assets in a divorce. However, when it comes to dividing digital assets, divorce settlements and proceedings are charting new territory. The rate of digital innovation and adoption in recent years has filled
- 1
- 2
- 3
- …
- 7
- Next Page »