cyber attacks

London’s financial Center Bombarded With Ransomware

People who work in the City of London, the UK capital’s financial centre, are being targeted by a specific kind of computer attack that holds digital files to ransom.

Cybersecurity company Malwarebytes says that the City of London is a hotbed for ransomware attacks compared to the rest of Europe.

The company monitored cybersecurity threats for just over a year to see which parts of Europe had the most attacks. It found that the City of London suffered 10,500 ransomware attacks, which is 670% more than the second-biggest target, Manchester.

IRS Retires e-Filing PIN System After More Cyber-Attacks

The US Internal Revenue Service (IRS) has announced it is retiring the e-Filing PIN system following a new wave of cyber-attacks after crooks previously abused the same system last February.
In a statement on the IRS website, the agency says it was planning to eliminate the e-File PIN system later this year, but it decided to expedite its decision after they detected another set of cyber-attacks against its online tool.

Hackers abused the tool last February
Last February, the IRS announced it detected an automated bot attack during which unknown crooks tried to illicitly generate e-Filing PINs for over 464,000 Americans. The IRS admitted that crooks got access to 101,000 e-Filing PINs.

The IRS uses the e-Filing PIN system to generate a unique PIN that Americans can use on their Form 1040 to file for tax returns. The PIN is not mandatory but only serves as an alternative to authenticating the document. US citizens can also use their prior-year adjusted gross income from copies of their previous year tax returns.

Our Critical Infrastructure Safety, a Cautionary Tale

Millions of people throughout the greater Los Angeles area have been left without power, running water or communication in the wake of what is certainly one of the worst disasters in recent American history. Millions of people throughout the greater Los Angeles area have been left without power, running water or communication in the wake of what is certainly one of the worst disasters in recent American history. It is not the first major cyberattack of U.S. infrastructure but certainly the worst, and one that has been predicted for years. Nevertheless, incident response teams across LA business and government were caught unprepared. Despite “red alert” attention, there is no word on when systems will be completely restored due to widespread impact to businesses, government agencies, educational institutions, and individual well-being. The city remains paralyzed as the depth of the cyberattack and recovery plans are still too large to be completely understood.

This would be a news story none of us would want to read.

16-30 April 2016 Cyber Attacks Timeline

It’s now time to publish the second timeline of April (Part I here) covering the main cyber-attacks occurred between 16 and 30 April 2016. A fortnight quite reach of interesting events, and characterized by two trends inherited from the first half of the month: the trail of massive breaches, and the endless row of W-2 scams.

The first category includes now two new victims: Beautifulpeople.com, which had 1.1M accounts leaked, and the Lifeboat Minecraft community, whose number leaked account achieves the remarkable number of 7M. The group of victims of W-2 scams is really too wide to mention each single entity, however ADP is probably the most noticeable victim of this second half of April.

Middle East businesses suffer more cybercrime than globally

Dubai: Businesses in the Middle East are more likely to have suffered an incident related to cybercrime, according to a report by consulting firm PricewaterhouseCoopers.

85 per cent said of Middle East respondents said they have been attacked, compared to the global average of 79 per cent.

Around 18 per cent of respondents in the region have experienced more than 5,000 attacks, compared to a global average of only nine per cent — which is higher than in any other region.

The report states that companies, especially in the Middle East, often find it difficult to identify when an attack has taken place: many only discover it when third parties or clients report suspicious messages or requests for funds.
In 2015, 38 per cent more security incidents were detected in the Middle East than in 2014.

Two-Thirds of UK Firms Suffered a Cyber Attack Last Year

Two-thirds of large UK businesses suffered a data breach or cyber attack at some point in the past year, according to new research by the government.

Released on Sunday, the Cyber Security Breaches Survey claims that a quarter of those firms which suffered a breach did so at least once a month.

The stats are doubly concerning as, in many cases, the cost of dealing with such an incident runs into the millions, according to the government.

WHITE HOUSE SAYS AGENCIES REPORTED 77,200 CYBER INCIDENTS IN 2015

The annual performance review for agency information security is in and, while it does not mention there were big breaches this year, the scores reflect an executive branch in need of a significant IT tune-up.

During fiscal 2015, federal departments collectively reported 77,183 cybersecurity incidents, a 10 percent uptick from the number reported the previous year.

Dear Locky: You have shown that signature-based detection is fundamentally impossible, but we still caught you!

By: Carolyn Crandall CMO The Dridex Locky ransomware strain by design isn’t any more sophisticated than its fellow ransomware Cryptowall, TeslaCrypt and others. However, it is said to be backed by the Russian Dridex criminal group, a known leader in banking malware and it has quickly built its reputation by the speed in which it …

Dear Locky: You have shown that signature-based detection is fundamentally impossible, but we still caught you! Read More »

Report: Healthcare cyberattacks occur almost monthly

Healthcare organizations face about one cyberattack per month and are still struggling to find effective strategies to keep systems secure, according to new research from the Ponemon Institute.

In a poll of 535 healthcare IT and IT security practitioners, 48 percent said their organization had a breach involving loss or exposure of patient information in the past year. They cited some of their biggest threats as system failures, unsecured medical devices, identity thieves and unsecured mobile devices.

Dell: Malware attacks double in just 12 months

Companies are being left exposed to malware by increasingly sophisticated techniques, such as using SSL/TSL to bypass firewalls and ever evolving exploit kits, according to a new report by Dell Security.

In its Annual Threat Report (registration required), Dell reported that the number of malware attacks that occurred in 2015 was nearly twice that of 2014, with hackers making particular use of weaknesses in businessessecurity programmes.

Scroll to Top