by Paul Ducklin [04’24”] Alleged malware coder from the Trickbot gang arrested. [15’36”] 5500 passwords cracked and salaries stolen by “credential stuffing” crook. [29’28”] We answer a listener’s question about just how tough to be when judging a company that’s had a breach. [34’37”] Oh! No! of the week. With Kimberly Truong, Doug . . . Read more
by Paul Ducklin The US Department of Justice (DOJ) just announced that it has charged a 55-year-old Latvian woman, who went by the moniker of Max, with malware-writing crimes. Max, whose real name is apparently Alla Witte, is the sixth of seven defendants listed in the DOJ’s indictment, along with . . . Read more
The relentless rise in COVID-19 cases is battering already frayed healthcare systems — and ransomware criminals are using the opportunity to strike.
Just in time for the Christmas holiday, Emotet is sending the gift of Trickbot. After a lull of nearly two months, the Emotet botnet has returned with updated payloads and a campaign that is hitting 100,000 targets per day. Emotet started life as a banking trojan in 2014 and has . . . Read more
A new “TrickBoot” module scans for vulnerable firmware and has the ability to read, write and erase it on devices. The TrickBot malware has morphed once again, this time implementing functionality designed to inspect the UEFI/BIOS firmware of targeted systems. It marks a serious resurgence following an October takedown of . . . Read more
Cybercriminals are leveraging the multitudes of vulnerable connected devices with botnets that launch dangerous distributed denial-of-service (DDoS) attacks. The vast number of Internet-of-Things (IoT) devices are proving to be lucrative for botnet operators to carry out various attacks – from sending spam to launching harmful distributed denial-of-service (DDoS) attacks, according . . . Read more
Sopra Steria hit with cyber attack that reportedly encrypted parts of their network on Oct. 20 but has remained mostly mum on details. French IT giant Sopra Steria was hit with a cyber attack this week that disrupted the business of the firm and is widely believed to be the . . . Read more
by Paul Ducklin Good news, for a while at least. Microsoft went to US District Court for the greater good of all of us and came away with a court order permitting it to take over a whole raft of internet servers. The company was authorised to take over a . . . Read more