-
New Grandoreiro Malware Variant Targets Spain
Proofpoint said this variant is attributed to the threat actor TA2725 Read More
-
QuasarRAT Deploys Advanced DLL Side-Loading Technique
Uptycs researchers said the technique exploits Microsoft files to execute malicious commands Read More
-
NJ Man Hired Online to Firebomb, Shoot at Homes Gets 13 Years in Prison
A 22-year-old New Jersey man has been sentenced to more than 13 years in prison for participating in a firebombing and a shooting at homes in Pennsylvania last year. Patrick McGovern-Allen was the subject of a Sept. 4, 2022 story here about the emergence of “violence-as-a-service” offerings, where random people from the Internet hire themselves…
-
Child Exploitation and the Crypto Wars
Susan Landau published an excellent essay on the current justification for the government breaking end-to-end-encryption: child sexual abuse and exploitation (CSAE). She puts the debate into historical context, discusses the problem of CSAE, and explains why breaking encryption isn’t the solution. Read More
-
Business continuity planning: Looking back or ahead
In September 2023, cybercriminals launched an extensive ransomware attack that disrupted several major businesses in the Las Vegas Casino Business/District. The attack shook the city and stopped consumer goods and services for several hours. The attack influenced security, visitor services, and financial activities. Businesses lost money and long-term reputational risks ensued. Increasing op tempo A company…
-
ICC: September Breach Was Espionage Raid
War crimes court warns of persistent attacks Read More
-
Okta Reveals Breach Via Stolen Credential
Threat actor accessed case management system Read More
-
Police Dismantle Ragnar Locker Ransomware Group
Prolific variant frequently targeted critical infrastructure Read More
-
Friday Squid Blogging: Why There Are No Giant Squid in Aquariums
They’re too big and we can’t recreate their habitat. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Read my blog posting guidelines here. Read More
-
Hackers Stole Access Tokens from Okta’s Support Unit
Okta, a company that provides identity tools like multi-factor authentication and single sign-on to thousands of businesses, has suffered a security breach involving a compromise of its customer support unit, KrebsOnSecurity has learned. Okta says the incident affected a “very small number” of customers, however it appears the hackers responsible had access to Okta’s support…