Month: December 2020

Police Arrest 21 WeLeakInfo Customers Who Bought Breached Personal Data

26 December 2020

21 people have been arrested across the UK as part of a nationwide cyber crackdown targeting customers of WeLeakInfo[.]com, a now-defunct online service that had been previously selling access to data hacked from other websites. The suspects used stolen personal credentials to commit further cyber and fraud offences, the NCA said. Of the 21 arrested—all […]

Read More

Microsoft Warns CrowdStrike of Hackers Targeting Azure Cloud Customers

25 December 2020

New evidence amidst the ongoing probe into the espionage campaign targeting SolarWinds has uncovered an unsuccessful attempt to compromise cybersecurity firm Crowdstrike and access the company’s email. The hacking endeavor was reported to the company by Microsoft’s Threat Intelligence Center on December 15, which identified a third-party reseller’s Microsoft Azure account to be making “abnormal […]

Read More

Attackers Abusing Citrix NetScaler Devices to Launch Amplified DDoS Attacks

25 December 2020

Citrix has issued an emergency advisory warning its customers of a security issue affecting its NetScaler application delivery controller (ADC) devices that attackers are abusing to launch amplified distributed denial-of-service (DDoS) attacks against several targets. “An attacker or bots can overwhelm the Citrix ADC [Datagram Transport Layer Security] network throughput, potentially leading to outbound bandwidth […]

Read More

DDoS attacks hit Citrix Application Delivery Controllers, hindering customer performance

24 December 2020

Exterior of the Citrix Systems headquarters in Santa Clara, California. (Citrix Systems Inc./CC BY 3.0) Citrix reported Thursday a DDoS attack that was hitting its Citrix Application Delivery Controllers (ADCs), the networking products that let security and network teams manage the delivery speed and quality of applications to end users. According to the Citrix threat […]

Read More

Account takeovers: Insiders need not be malicious to cause chaos

24 December 2020

With 2020 coming to a close, SC Media is delivering through a series of articles our picks of the most high impact events and trends of the last year, which we predict will factor into community strategies in 2021 and beyond. This is the first in that series. There’s a term that’s used to describe […]

Read More

Assessing security controls for Microsoft 365 Enterprise

24 December 2020

Today’s columnist, Kelly White of RiskRecon, runs through seven questions security teams need to consider when setting up the controls for Microsoft 365 Enterprise. Coolcaesar CreativeCommons Attribution-ShareAlike 4.0 International (CC BY-SA 4.0) Much like many cloud services, Microsoft 365 Enterprise’s core value proposition becomes its primary challenge for security teams. The cloud-based suite of productivity […]

Read More

Google Discloses Poorly-Patched, Now Unpatched, Windows 0-Day Bug

24 December 2020

Google’s Project Zero team has made public details of an improperly patched zero-day security vulnerability in Windows print spooler API that could be leveraged by a bad actor to execute arbitrary code. Details of the unpatched flaw were revealed publicly after Microsoft failed to patch it within 90 days of responsible disclosure on September 24. […]

Read More

North Korean Hackers Trying to Steal COVID-19 Vaccine Research

24 December 2020

Threat actors such as the notorious Lazarus group are continuing to tap into the ongoing COVID-19 vaccine research to steal sensitive information to speed up their countries’ vaccine-development efforts. Cybersecurity firm Kaspersky detailed two incidents at a pharmaceutical company and a government ministry in September and October leveraging different tools and techniques but exhibiting similarities […]

Read More

Can SolarWinds survive? For breached companies it’s a long, painful road to restoring trust

23 December 2020

In several important ways, the SolarWinds hack is unique: few companies have the same level of software dominance at the highest levels of government and industry or merit the kind of targeting from a state sponsored APT group. In a broader sense, they’re facing a similar reality that many other companies find themselves in following […]

Read More

Three ways we can move the industry to passwordless authentication

23 December 2020

Apple CEO Tim Cook has been a strong proponent of facial recognition and other forms of passwordless authentication. Today’s columnist, J. Wolfgang Goerlich of Duo Security at Cisco, offers some insights into how the industry can move beyond passwords. Change happens at an uneven pace. Take the latest smartphone. The camera still has a lovely […]

Read More