How a typical Evilnum attack against a fintech target unfolds (Source: ESET)

APT Group Targets Fintech Companies

Akshaya Asokan • July 9, 2020

A little-known advanced persistent threat group dubbed Evilnum has been targeting fintech firms in the U.K. and Europe over the past two years, using spear-phishing emails and social engineering to start their attacks, according to the security firm ESET.

Cybercrime

It's Official: CCPA Enforcement Begins

Latest

COVID-19

Analysis: Monitoring the Risks Posed by Remote Workers

Nick Holland • July 10, 2020

The latest edition of the ISMG Security Report analyzes the surge in the use of employee monitoring tools for the increasingly remote workforce. Also featured: Discussions about IoT security guidelines and CCPA compliance requirements.

Account Takeover

Cereberus Banking Trojan Targeted Spanish Android Users

Prajeet Nair • July 9, 2020

The Cereberus banking Trojan and info stealer was found posing as a legitimate money converter app in the Google Play Store, where it was downloaded more than 10,000 times, according to Avast Mobile Threat Labs.

Account Takeover

Card Skimmer Found Hitting Vulnerable E-Commerce Sites

Doug Olenick • July 8, 2020

A credit card skimmer that has been operating since April is specifically targeting sites hosted on Microsoft IIS servers that are currently running an out-of-date version of ASP.NET, according to security firm Malwarebytes. About 27 million websites still use this now unsupported software.

Cybercrime

Feds Indict 'Fxmsp' for Hacking Multiple Firms

Ishita Chigilli Palli • July 8, 2020

The U.S. Justice Department has charged Kazakhstan national Andrey Turchin with being the hacker known as "Fxmsp," as well as running a hacking collective known by the same name that's been tied to 300 attacks worldwide, including against anti-virus vendors.

Governance & Risk Management

CCPA Enforcement: What to Expect Now

Anna Delaney • July 8, 2020

Attorney Sadia Mirza, offers an update on the July 1 California Consumer Privacy Act enforcement and what security and privacy professionals should expect over the next few months.

COVID-19

Employee Surveillance: Who's the Boss(ware)?

Mathew J. Schwartz • July 8, 2020

With so many employees working from home during the COVID-19 pandemic, vendors of time-tracking and productivity-monitoring software report surging interest in their wares. Regardless of whether organizations deploy light-touch or more Big Brother types of approaches, beware potential privacy repercussions.

Anti-Phishing, DMARC

Microsoft Seizes Domains Used for COVID-19 Phishing Scam

Doug Olenick • July 7, 2020

A U.S. federal court has issued an injunction that gives Microsoft permission to seize control of several malicious domains being used to operate a COVID-19-themed phishing scam, according to recently unsealed court documents.

Endpoint Security

More Than 1,000 IoT Security Guidelines: Which One to Use?

Jeremy Kirk • July 7, 2020

With more than 1,000 IoT security guidelines, recommendations and best practices, which ones should an organization follow? Researchers at Carleton University in Canada say 91 percent of the guides are outcome-based, which are not necessarily easy for manufacturers to follow.

Cybercrime

Purple Fox Malware Targets More Vulnerabilities

Ishita Chigilli Palli • July 7, 2020

The developers behind the Purple Fox fileless downloader malware recently upgraded their operation and are now targeting two new vulnerabilities to gain access to networks, according to a report by security firm Proofpoint.

Business Continuity Management / Disaster Recovery

Ransomware + Exfiltration + Leaks = Data Breach

Mathew J. Schwartz • July 7, 2020

Ransomware-wielding attackers continue to pummel organizations. But labeling these as being just ransomware attacks often misses how much these incidents involve serious network intrusions, exfiltration of extensive amounts of data, data leaks and, as a result, reportable data breaches.

Cybercrime

Patching Urged as F5 BIG-IP Vulnerability Exploited

Ishita Chigilli Palli • July 6, 2020

Security researchers warn that the number of exploit attempts targeting a critical vulnerability in F5 Networks' BIG-IP networking products has steadily increased since the company first announced the flaw late last week. They urge users to immediately apply patches.

Identity & Access Management

Progress Report: FIDO's Effort to Eliminate Passwords

Anna Delaney • July 6, 2020

Andrew Shikiar, executive director at the FIDO Alliance, offers an update on the group's efforts to reduce reliance on passwords and discusses how to overcome barriers.