-
Cengage to Buy Cybersecurity Training platform, Infosec
Cengage to Buy Cybersecurity Training platform, Infosec A global education technology company based in Boston has signed a $191M deal to buy the cybersecurity training platform, Infosec. Cengage Group announced the planned addition to its ed2Go business on Monday. The deal is expected to close in the first quarter of 2022. “The online, employer-paid cybersecurity training segment is…
-
Aussie Tech Entrepreneur Extradited Over SMS Fraud
Aussie Tech Entrepreneur Extradited Over SMS Fraud A Russian-born tech entrepreneur has been extradited to the United States from Australia to face charges relating to a multi-million-dollar text messaging consumer fraud scheme. The arrival in America of 41-year-old dual Russian and Australian citizen Eugeni Tsvetnenko was announced by the Federal Bureau of Investigation (FBI) on Friday. Tsvetnenko –…
-
Prison for Dark Overlord Collaborator
Prison for Dark Overlord Collaborator A Canadian man has been sentenced to prison in the United States for trading in stolen identities and collaborating with the Dark Overlord cyber extortionist group. Using the screen name GoldenAce, Slava Dmitriev bought and sold hundreds of illegally obtained IDs on the dark web. The 29-year-old resident of Vaughn, Ontario, traded…
-
Outdated IoT healthcare devices pose major security threats
More than half (53%) of the IoT (internet of things) and internet of medical things (IoMT) devices used in healthcare contain critical cybersecurity risks, according to The State of IoMT Device Security report by Cynerio, which analyzed devices from more than 300 hospitals in the US. Cynerio makes IoT and security systems for heathcare providers.…
-
Beware! Facebook accounts being hijacked via Messenger prize phishing chats
Facebook users are being warned of a phishing campaign that tries to break into accounts, disguised as a Facebook Messenger chat from a friend. Read more in my article on the Hot for Security blog. Read More
-
Securing Critical Infrastructure: The Essential Role of Public-Private Partnerships
Government collaboration with industry can help drive strategic planning and tactical operations to address cyberthreats. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) states, “Public-private partnerships are the foundation for effective critical infrastructure security and resilience strategies, and timely, trusted information sharing among stakeholders is essential to the security of the nation’s critical infrastructure.” We…
-
Qubit pleads with hacker to return $80 million of stolen funds
Qubit, a decentralized finance (DeFi) platform, has publicly offered $2,000,000 to a hacker who stole $80 million worth of cryptocurrency from it last week. Read more in my article on the Hot for Security blog. Read More
-
Twelve-Year-Old Linux Vulnerability Discovered and Patched
It’s a privilege escalation vulnerability: Linux users on Tuesday got a major dose of bad news — a 12-year-old vulnerability in a system tool called Polkit gives attackers unfettered root privileges on machines running most major distributions of the open source operating system. Previously called PolicyKit, Polkit manages system-wide privileges in Unix-like OSes. It provides…
-
Stories from the SOC – WannaCry malware
Stories from the SOC is a blog series that describes recent real-world security incident investigations conducted and reported by the AT&T SOC analyst team for AT&T Managed Threat Detection and Response customers. Executive summary WannaCry malware was first discovered in May 2017 and a patch was released roughly two months prior to its public release.…
-
US Revokes China Unicom’s License
US Revokes China Unicom’s License The US government has effectively stripped another Chinese telecoms player of its license to operate in the country on national security grounds. The new Federal Communications Commission (FCC) order ends the ability of China Unicom Americas to provide telecoms services within the US. It follows a March 2021 finding by…