Graham Cluely

Scottish environmental agency still struggling after Christmas Eve ransomware attack

Graham Cluely Security Blog - Tue, 01/19/2021 - 3:29am
The Scottish Environment Protection Agency (SEPA) has confirmed that it is continuing to respond to an ongoing ransomware attack that has encrypted files, disrupted systems and seen 1.2 GB of data stolen by cybercriminals. Read more in my article on the Hot for Security blog.
Categories: Graham Cluely

Swanky Wentworth golf club hacked, details of 4000 members stolen in ransomware attack

Graham Cluely Security Blog - Mon, 01/18/2021 - 5:58pm
Members of one of England's most exclusive golf clubs has warned its 4000 members that their personal details may have fallen into the hands of hackers following a ransomware attack.
Categories: Graham Cluely

Cryptocurrency scammers hijack verified accounts once again, jumping on Elon Musk’s Twitter threads

Graham Cluely Security Blog - Mon, 01/18/2021 - 11:43am
Hackers are still making hay hijacking the accounts of verified celebrity users to promote cryptocurrency scams.
Categories: Graham Cluely

Cybercriminals are bypassing multi-factor authentication to access organisation’s cloud services

Graham Cluely Security Blog - Thu, 01/14/2021 - 9:47am
The US Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning to companies to better protect their cloud-based accounts after several recent successful attacks. Read more in my article on the Tripwire State of Security blog.
Categories: Graham Cluely

Orca Security public cloud security report reveals how most large cloud breaches happen

Graham Cluely Security Blog - Thu, 01/14/2021 - 5:48am
Graham Cluley Security News is sponsored this week by the folks at Orca Security. Thanks to the great team there for their support! You’re probably familiar with the shared responsibility model. The basic idea is that public cloud providers such as Amazon Web Services (AWS), Microsoft Azure, and Google Cloud Platform (GCP) keep their platforms … Continue reading "Orca Security public cloud security report reveals how most large cloud breaches happen"
Categories: Graham Cluely

Smashing Security podcast #210: DC rioters ID’d, Energydots, and ransomware gets you in a pickle

Graham Cluely Security Blog - Thu, 01/14/2021 - 5:33am
Penile penal problems, identifying rioters in Washington DC, and can a sticker protect you from radiation? All this and much more is discussed in the latest edition of the award-winning "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by The Cyberwire's Dave Bittner. And don't miss our featured interview with CrowdSec's Philippe Humeau.
Categories: Graham Cluely

Microsoft patches anti-virus bug that allowed boobytrapped files to run malicious code when scanned

Graham Cluely Security Blog - Wed, 01/13/2021 - 3:17pm
Microsoft has patched a security vulnerability that was - ironically - exploiting usage of the company's own Windows security product, Microsoft Defender Antivirus.
Categories: Graham Cluely

Ubiquiti users told to change their passwords following security breach

Graham Cluely Security Blog - Tue, 01/12/2021 - 7:19am
IoT device vendor Ubiquiti has told customers that they should change their passwords after a security breach left user details exposed. Read more in my article on the Hot for Security blog.
Categories: Graham Cluely

Russia-linked postcard was “sent to FireEye’s CEO after cybersecurity firm uncovered hack”

Graham Cluely Security Blog - Mon, 01/11/2021 - 6:28pm
The CEO of FireEye, the cybersecurity company hacked by a state-sponsored attack, received a postcard at his home mocking any claims that Russia might have been responsible.
Categories: Graham Cluely

Donald Trump’s presidency ended today, claims altered US State Department website

Graham Cluely Security Blog - Mon, 01/11/2021 - 5:39pm
The biographies of outgoing US President Donald Trump and his Vice President Mike Pence were mysteriously changed on the official US State Department website at some point on Monday. Visitors to www.state.gov were unable to view facts about the country's top politicians, as somebody appeared to have mysteriously wiped them - only to be replace them with a solitary line detailing the end of their term.
Categories: Graham Cluely

Ransomware gangs scavenge for sensitive data by targeting top executives

Graham Cluely Security Blog - Mon, 01/11/2021 - 7:07am
In their attempt to extort as much money as quickly as possible out of companies, ransomware gang know some effective techniques to get the full attention of a firm's management team. And one of them is to specifically target the sensitive information stored on the computers used by a company's top executives, in the hope of finding valuable data that can best pressure bosses into approving the payment of a sizeable ransom. Read more in my article on the Tripwire State of Security blog.
Categories: Graham Cluely

Data stolen from Hackney Council posted on dark web by ransomware gang

Graham Cluely Security Blog - Thu, 01/07/2021 - 12:56pm
The cybercrime gang behind the PYSA ransomware has released files which they claim to have stolen from the London borough council of Hackney during an attack last year.
Categories: Graham Cluely

Ill-conceived Donald Trump sex video malware attack attempts to install RAT on Windows PCs

Graham Cluely Security Blog - Wed, 01/06/2021 - 10:54am
Have you been emailed a file claiming to be video evidence of a Donald Trump sex scandal? Don't click!
Categories: Graham Cluely

Ransomware today: What’s new and how to protect your organization – a free webinar

Graham Cluely Security Blog - Wed, 01/06/2021 - 7:45am
Please join me on Tuesday 12 January, for a live webinar where I will be discussing ransomware, with the lovely folks from Cloudian.
Categories: Graham Cluely

Elite security intelligence at zero cost – use Recorded Future Express!

Graham Cluely Security Blog - Wed, 01/06/2021 - 7:21am
Graham Cluley Security News is sponsored this week by the folks at Recorded Future. Thanks to the great team there for their support! Recorded Future empowers your organization, revealing unknown threats before they impact your business, and helping your teams respond to alerts 10 times faster. How does it do this? By automatically collecting and … Continue reading "Elite security intelligence at zero cost – use Recorded Future Express!"
Categories: Graham Cluely

One month after ransomware attack, Metro Vancouver’s transit system still not up to speed

Graham Cluely Security Blog - Tue, 01/05/2021 - 1:16pm
TransLink, Metro Vancouver’s public transportation agency, has warned its staff that hackers accessed their personal bank account details and other information. The warning came in an internal email to workers approximately one month after Translink was struck by the Egregor ransomware and passengers had their journeys disrupted. Read more in my article on the Hot for Security blog.
Categories: Graham Cluely

T-Mobile suffers its fourth hack in less than three years – still “takes the security of your information very seriously”

Graham Cluely Security Blog - Tue, 01/05/2021 - 8:09am
T-Mobile says that its security team recently discovered that hackers had managed to access information related to T-Mobile accounts. And it's not the first time...
Categories: Graham Cluely

Ticketmaster fined $10 million after hack of business rival

Graham Cluely Security Blog - Fri, 01/01/2021 - 8:05am
The US Department of Justice has announced that Ticketmaster has been fined $10 million for repeatedly accessing a competitor’s computer systems in order to gain a commercial advantage.
Categories: Graham Cluely

Police bring down “bulletproof” VPN services beloved by cybercriminals

Graham Cluely Security Blog - Wed, 12/23/2020 - 10:14am
The FBI, working with law enforcement agencies across Europe, have seized three web domains and the server infrastructure used by a VPN service to allegedly help cybercriminals compromise networks around the world, and evade detect by police. Read more in my article on the Hot for Security blog.
Categories: Graham Cluely