Payment Card Theft Ring Tech Leader Gets 10-Year Sentence

Scott Ferguson • April 19, 2021

A Ukrainian national who admitted to working as a system administrator and IT manager for the notorious FIN7 cybercriminal gang, which has been involved in the theft of millions of payment cards, has been sentenced to 10 years in federal prison.

►

Cybercrime

NSA Veterans Nominated for Top Cyber Posts

Latest

Cybercrime

REvil Ransomware Gang Threatens Stolen Apple Blueprint Leak

Mathew J. Schwartz • April 21, 2021

The REvil - aka Sodinokibi - ransomware gang is threatening to release stolen Apple device blueprints unless it receives a massive payoff. The extortion threat - with a reported $50 million opening demand - was unveiled hours before Apple made a series of major new product announcements.

Endpoint Security

SonicWall Patches 3 Zero-Day Flaws

Jeremy Kirk • April 21, 2021

SonicWall has patched three zero-day vulnerabilities in the hosted and on-premises versions of its Email Security product after attackers began exploiting them last month. Attackers can exploit the flaws to access email and pivot deeper into organizations' systems, FireEye Mandiant reports.

3rd Party Risk Management

Nation-State Actor Linked to Pulse Secure Attacks

Doug Olenick • April 20, 2021

The U.S. Cybersecurity and Infrastructure Security Agency, Ivanti and FireEye report that federal agencies and other entities have been compromised by two attack groups, with one possibly acting on behalf of the Chinese government. The groups are exploiting vulnerabilities in Ivanti's Pulse Connect Secure.

Cyberwarfare / Nation-State Attacks

100-Day Plan to Enhance Electrical Grid Security Unveiled

Scott Ferguson • April 20, 2021

The Biden administration is rolling out a 100-day plan to improve cybersecurity and address cyberthreats across the nation's electrical grid.

Governance & Risk Management

Identity Management at the Core of Recent M&A Activity

Doug Olenick • April 20, 2021

Identity management was the focus of three acquisitions announced in the last several days by Mastercard, Entrust and Keyfactor.

Cyberwarfare / Nation-State Attacks

White House 'Stands Down' SolarWinds, Exchange Response Groups

Scott Ferguson • April 19, 2021

The White House announced Monday that it is "standing down" two Unified Coordination Groups that were created to coordinate the federal response to the SolarWinds supply chain attack and attacks on vulnerable on-premises Microsoft Exchange email servers.

ATM / POS Fraud

ATM Attacks: Terminal Fraud Dives in Europe During Pandemic

Mathew J. Schwartz • April 19, 2021

Criminals continue to target ATMs with black boxes to run cash-out attacks and use explosives to get cash out of machines. But during the pandemic, most other types of attacks used to target ATMs, payment terminals and point-of-sale devices sharply declined, a new European study shows.

Biometrics

Unscripted: 3 Security Leaders Dissect Today's Top Trends

Tom Field • April 16, 2021

No script, no filter: Just Microsoft’s Edna Conway and Cisco’s Wendy Nather gathering with privacy leader Michelle Dennedy to discuss the impact of the SolarWinds supply chain attack and to play Buzzword Mystery Date with SASE, CIAM and "passwordless" authentication - are these trends dreamboats or duds?

Breach Notification

ISMG Editors’ Panel: The Facebook Breach and More

Anna Delaney • April 16, 2021

Four editors at Information Security Media Group discuss important cybersecurity issues, including Facebook’s latest data leak and how adversaries continue to innovate and evolve.

3rd Party Risk Management

Attack on Codecov Affects Customers

Doug Olenick • April 16, 2021

Codecov, a company that tests software code prior to release, has notified customers that attackers had access to its network for a month and placed malware in one of its systems, which may have led to the exfiltration of customers' information.

3rd Party Risk Management

Does FBI Exchange Remediation Action Set a Precedent?

Anna Delaney • April 16, 2021

The latest edition of the ISMG Security Report features an analysis of whether the FBI removing malicious web shells from hundreds of compromised Microsoft Exchange Servers could set a precedent. Also featured is a description of an unusual fraud scam plus an update on security product development trends.

Cryptocurrency Fraud

Lazarus E-Commerce Attackers Also Targeted Cryptocurrency

Mathew J. Schwartz • April 15, 2021

Hackers with apparent ties to North Korea who hit e-commerce shops via Magecart-style attacks to steal payment card data also tested malicious tools for stealing cryptocurrency, reports cybersecurity firm Group-IB. Such functionality could trick customers into paying with cryptocurrency.