Merck Awarded $1.4B Insurance Payout over NotPetya Attack
Court rules ‘War or Hostile Acts’ exclusion doesn’t apply to the pharma giant’s 2017 cyberattack. Source: Threatpost.com
Continue ReadingCategory: Government
Destructive Wiper Targeting Ukraine Aimed at Eroding Trust, Experts Say
Disruptive malware attacks on Ukrainian organizations (posing as ransomware attacks) are very likely part of Russia’s wider effort to undermine Ukraine’s sovereignty, according to analysts. Source: Threatpost.com
Continue ReadingCloned Dept. of Labor Site Hawks Fake Government Contracts
A well-crafted but fake government procurement portal offers the opportunity to submit a bid for lucrative government projects — but harvests credentials instead. Source: Threatpost.com
Continue ReadingWill 2022 Be the Year of the Software Bill of Materials?
Praise be & pass the recipe for the software soup: There’s too much scrambling to untangle vulnerabilities and dependencies, say a security experts roundtable. Source: Threatpost.com
Continue ReadingGovernments struggle to deliver secure online citizen services
Auth0 released the findings of its Public Sector Identity Index, a global research report that provides government technology leaders with insight into the identity maturity of public sector organizations around the world. The report, conducted by Market Connections, highlights the importance of a centralized identity strategy in putting safe and accessible services into the hands […]
Continue ReadingThe security of devices held by public sector employees
Apricorn announced new findings from Freedom of Information (FoI) requests submitted to 16 government departments into the security of devices held by public sector employees. NHS Digital recorded a total of 393 lost or stolen devices between September 2020 and September 2021, including 52 mobiles, 19 laptops and 3 tablets. In addition, a further 319 […]
Continue ReadingUkraine: Wiper malware masquerading as ransomware hits government organizations
In the wake of last week’s attention-grabbing defacements of many Ukrainian government websites, Microsoft researchers have revealed evidence of a malware operation targeting multiple organizations in Ukraine, deploying what seems to be ransomware but is actually Master Boot Records (MBR) wiper malware. The defacements “On the night of January 13-14, a number of government websites, […]
Continue Reading‘Be Afraid:’ Massive Cyberattack Downs Ukrainian Gov’t Sites
As Moscow moves troops and threatens military action, about 70 Ukrainian government sites were hit. “Be afraid” was scrawled on the Foreign Ministry site. Source: Threatpost.com
Continue ReadingRussian Security Takes Down REvil Ransomware Gang
The country’s FSB said that it raided gang hideouts; seized currency, cars and personnel; and neutralized REvil’s infrastructure. Source: Threatpost.com
Continue ReadingUS Military Ties Prolific MuddyWater Cyberespionage APT to Iran
US Cyber Command linked the group to Iranian intelligence and detailed its multi-pronged, increasingly sophisticated suite of malware tools. Source: Threatpost.com
Continue Reading