Cyberinsurance giant AXA hit by ransomware attack after saying it would stop covering ransom payments
One week after the French branch of cyberinsurance giant AXA said that it would no longer be writing policies to cover ransomware payments, the company's operations in Thailand, Malaysia, Hong Kong, and the Phillippines have reportedly been hit... by a ransomware attack.
A leading manufacturer of gaming hardware has warned internet users to be wary of downloading fake versions of free software it distributes to overclock GPUs. Read more in my article on the Hot for Security blog.
Sounds like a great opportunity. It’s not as if things can get worse, right?
Report: Colonial Pipeline paid ransomware attackers $5 million, but still had to rely on its own backups
Bloomberg reports that the extortionists of Colonial Pipeline received almost $5 million worth of cryptocurrency, but that the tool they provided to decrypt IT systems wasn't up to the job.
Earlier today, Ireland’s health service (the HSE) shut down all of its IT systems following what they describes as a “significant ransomware attack.”
The Water Services Regulation Authority (better known as Ofwat) which is the UK Government's department responsible for regulating the privatised water and sewage industry in England and Wales, said it had received 21,486 malicious emails so far this year - with 5,149 classified as phishing attacks. At first glance that sounds pretty bad for such a short period of time, especially when you consider that Ofwat only employs 266 people. But is it? Read more in my article on the Tripwire State of Security blog.
Facebook says it's sticking up for the little guys as it picks a fight with Apple, there are testing times on the trains, and Twitter takes a tip. All this and much more is discussed in the latest edition of the award-winning "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Ray [REDACTED].
So, what do you do if you're a ransomware gang which has just caught the attention of not just the world's media, but also the FBI and the President of the United States?
Tulsa, Oklahoma, is reportedly the latest in a long line of American cities to have fallen victim to a ransomware attack. The attack, which occurred on Friday evening, caused the city's IT security teams to shut down many of Tula's internal systems over the weekend "out of an abundance of caution" while they worked around the clock at the weekend in an attempt to restore operations from backups. Read more in my article on the Hot for Security blog.
The 5,500 miles of Colonial Pipeline, which carry over 100 million gallons of fuel every day, from Houston, Texas to the New York Harbor, has been offline since May 7 following a ransomware attack.
Insurance giant AXA has said that it is no longer writing cyberinsurance policies in France that cover ransom payments to extortionists. Read more in my article on the Hot for Security blog.
Millions of smart TVs in China may have collected data without the knowledge of viewers about Wi-Fi networks found within range and attached devices. Read more in my article on the Bitdefender BOX blog.
The US Defense Department and third-party military contractors are being advised to strengthen the security of their operational technology (OT) in the wake of security breaches, such as the SolarWinds supply chain attack. Read more in my article on the Tripwire State of Security blog.
Graham Cluley Security News is sponsored this week by the folks at Recorded Future. Thanks to the great team there for their support! Recorded Future are experts at providing deep, detailed insight into emerging threats by automatically collecting, analyzing, and organizing billions of data points from the web. The FREE Cyber Daily email from Recorded … Continue reading "Recorded Future’s free Cyber Daily brings the latest trending threat insights to your inbox"
How did the SCAM cryptocurrency become a success? Why is Google allowing government rip-off ads to still appear on search results? And why on earth is everyone suddenly spending millions of dollars on NFTs? All this and much more is discussed in the latest edition of the award-winning "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Rip Off Britain's David McClelland.
Signal tried to run targeted ads on Instagram that showed users *how* they had been targeted, and revealed the extraordinary amount of data Facebook collects about users.
Uh oh. Not only were Peloton bikes leaking personal information about users, but when told about the problem the company was far from perfect in its response.
Police have shut down one Boystown, ome of the world's largest child abuse image websites, following an investigation that saw authorities across the globe work together to identify and apprehend those responsible for its creation and maintenance.
DigitalOcean, the popular cloud-hosting provider, has told some of its customers that their billing details were exposed due to what it described as a "flaw." Read more in my article on the Hot for Security blog.
Google loses its domain in Argentina, how do gripe sites make their dough, and has John Deere solved the cybersecurity problem? All this and much more is discussed in the latest edition of the award-winning "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Mark Stockley.