(Source: Jarek Tuszyński via Wikipedia)

Senate SolarWinds Hearing: 4 Key Issues Raised

Scott Ferguson • February 24, 2021

The Senate Intelligence Committee's hearing about the supply chain attack that affected SolarWinds and dozens of other companies and federal agencies answered some questions about what went wrong but also raised four key issues.

3rd Party Risk Management

White House Preparing 'Executive Action' After SolarWinds Attack

3 North Koreans Indicted for Conspiring to Steal $1.3 Billion

Card Not Present Fraud

Darknet Markets Compete to Replace Joker's Stash

Application Security

Biden Assesses US Policies on China Cybersecurity Issues

Latest

Federal Reserve's Money Transfer Services Suffer Outage

Doug Olenick • February 24, 2021

The Federal Reserve's online money transfer system, including Fedwire Funds and Fedcash, suffered an outage for more than three hours Wednesday afternoon, citing technical issues for the event and not a cyber incident. Systems were restored by late afternoon.

Endpoint Security

Cybersecurity Agencies Warn of Accellion Vulnerability Exploits

Doug Olenick • February 24, 2021

The cybersecurity agencies of five countries have issued a joint advisory warning that hackers are exploiting vulnerabilities in the Accellion File Transfer Appliance to steal data and execute ransomware. Australia's Transport for New South Wales and Canada's Bombardier are the latest victims to be revealed.

Artificial Intelligence & Machine Learning

Using ID Screening to Fight COVID-19 Economic Relief Fraud

Nick Holland • February 24, 2021

High-speed identity screening can play a critical role in cracking down on fraud tied to COVID-19 economic relief efforts without impeding legitimate access to funds, says Dr. Gary Shiffman, CEO of Giant Oak, which offers artificial intelligence technology.

Cybercrime

Silver Sparrow Malware Infects 30,000 Macs

Doug Olenick • February 23, 2021

A previously undetected malware variant has infected almost 30,000 Apple Macs. So far, however, researchers have not seen the code, called Silver Sparrow, deliver any malicious payloads to these endpoints, according to a new report.

Cybercrime

Chinese Hacking Group 'Cloned' NSA Exploit Tool

Scott Ferguson • February 22, 2021

A Chinese hacking group reportedly "cloned" and deployed a zero-day exploit developed by the NSA's Equation Group before Microsoft patched the Windows flaw being exploited, according to Check Point Research. The analysis shows how some U.S. cyber weapons have been turned against their developers.

Anti-Phishing, DMARC

Sequoia Capital Investigating 'Cybersecurity Incident'

Prajeet Nair • February 22, 2021

Venture capital firm Sequoia Capital confirmed it was recently involved in a "cybersecurity incident," but offered no details on exactly what may have transpired. Cybersecurity teams and law enforcement agencies have been notified.

Application Security

SonicWall Was Hacked. Was It Also Extorted?

Jeremy Kirk • February 22, 2021

SonicWall was recently attacked via a zero-day flaw in one of its own products. Curiously, SonicWall hasn't said much about the extent and damage of the breach since its announcement. But there are strong indications it may have been targeted by an extortion attempt.

Application Security

M&A Update: CrowdStrike to Acquire Humio for $400 Million

Doug Olenick • February 20, 2021

Security firms Crowdstrike, Palo Alto Networks and Sailpoint are making acquisitions to bolster their product portfolios. Here's a rundown of the deals.

Fraud Management & Cybercrime

IRS Warns of Fresh Fraud Tactics as Tax Season Starts

Scott Ferguson • February 19, 2021

As tax season begins, the Internal Revenue Service is warning that it's seeing signs of fraudsters spoofing the agency's domains and incorporating its logos and language into phishing campaigns.

3rd Party Risk Management

Analysis: Russia's Sandworm Hacking Campaign

Anna Delaney • February 19, 2021

This edition of the ISMG Security Report features an analysis of the impact of a hacking campaign linked to Russia’s Sandworm that targeted companies using Centreon IT monitoring software. Also featured: a discussion of CIAM trends; a critique of Bloomberg's update on alleged Supermicro supply chain hack.

Business Email Compromise (BEC)

Nigerian Gets 10-Year Sentence for BEC Scam

Akshaya Asokan • February 18, 2021

A Nigerian national has been sentenced to 10 years in prison after pleading guilty to taking part in a business email compromise operation that extorted $11 million from its victims, according to the U.S. Department of Justice.

Cybercrime

Data Breaches: ShinyHunters' Dominance Continues

Mathew J. Schwartz • February 18, 2021

In 2020, a cybercrime operation known as ShinyHunters breached nearly 50 organizations, security researchers say. And this year, it shows no signs of slowing down - it's already hacked e-commerce site Bonobo and dating site MeetMindful.