Latest News Articles


--- TLP:WHITE ---

News

− US Breach Volumes Fell 19% in 2020 as Ransomware Surges

According to the Identity Theft Resource Center (ITRC), the number of publicly reported US data breaches and leaks in 2020 dropped roughly 19% from 2019, representing a shift from mass theft of customer data to more lucrative attack types like ransomware.

https://www.infosecurity-magazine.com/news/us-breach-volumes-fell-19-2020/

− A network of Twitter bots has attacked the Belgian government's Huawei 5G ban

Twitter has now suspended the accounts.

https://public-assets.graphika.com/reports/graphika_report_fake_cluster_boosts_huawei.pdf

− Lazarus Affiliate ‘ZINC’ Blamed for Campaign Against Security Researcher

Recent attacks against security researchers have been linked to North Korean APT ZINC, an affiliate of the notorious Lazarus group. New details have emerged on the attack, describing how the APT exploited Visual Studio, a Microsoft product, to infect systems with malware now known to be the comebacker malware variant.

https://www.microsoft.com/security/blog/2021/01/28/zinc-attacks-against-security-researchers/

− Ransomware payments are going down as more victims decide not to pay up

The average ransom paid to cybercriminals after a ransomware attack is declining as more companies are reluctant to pay up, following government advice over the legality of sending money to threat actor groups behind the malware.

https://www.coveware.com/blog/ransomware-marketplace-report-q4-2020

Vulnerabilities

− Ransomware attack takes out UK Research and Innovation's Brussels networking office

'Sensitive' personal data not accessed – so what about names and contact details? UK Research and Innovation, the British government's science and research organisation, has temporarily turned off a couple of its web-facing services after an apparent ransomware attack.

https://www.ukri.org/news/ukri-response-to-it-incident/

− Ransomware gangs now have industrial targets in their sights. That raises the stakes for everyone

Industrial environments make an alluring target for criminals distributing ransomware as attacks have the potential to cause massive disruption - organisations need to act now to secure their networks.

https://www.digitalshadows.com/blog-and-research/ransomware-analyzing-the-data-from-2020/

− Kobalos – A complex Linux threat to high performance computing infrastructure

ESET researchers publish a white paper about unique multiplatform malware they’ve named Kobalos that target Linux HPC.

https://www.welivesecurity.com/2021/02/02/kobalos-complex-linux-threat-high-performance-computing-infrastructure/

Community News

− Remote Work During the Pandemic: What We Got Wrong

As COVID-19 began to spread rapidly across the globe in 2020, many organizations moved their employees off company premises and enabled large "work from home" efforts. Nobody knew how long this would last, but we assumed we could work remotely for a few months until this thing worked itself out, then return to the office and get back to "normal."

https://blog.isc2.org/isc2_blog/2021/02/remote-work-during-the-pandemic-what-we-got-wrong.html

− Belgium’s Top Cybersecurity Authority on How To Make the Internet a Safer Place

As the head of the CCB, which manages Belgium’s Computer Emergency Response Team (CERT) and is under the authority of the country’s Prime Minister Director Miguel De Bruycker has his sights on more ambitious projects aimed at making the internet more secure. He talked to The Record recently about the future of digital identity and how governments must gain trust to implement strong cybersecurity policies.

https://therecord.media/belgiums-top-cybersecurity-authority-on-how-to-make-the-internet-a-safer-place/

--- TLP:WHITE ---