Photo: Microsoft

Agencies Urged to Patch Netlogon Flaw Before Election

Jeremy Kirk • October 30, 2020

Microsoft and the U.S. Cybersecurity and Infrastructure Security Agency are urging local government agencies to patch the Netlogon vulnerability known as Zerologon ahead of next Tuesday's presidential election to improve security. A "small number" of attacks exploiting the flaw are continuing, Microsoft says.

Fraud Management & Cybercrime

Ransomware Knocks Out Voter Database in Georgia

Latest

Blockchain & Cryptocurrency

Post-Election Cyber Disruptions: What to Expect

Anna Delaney • October 30, 2020

The latest edition of the ISMG Security Report features a discussion with FBI Agent Elvis Chan on the cyber disruptions to expect immediately after the Nov. 3 U.S. election. Also featured: smart lock security flaws; cryptocurrency-funded crimes in 2021.

Electronic Healthcare Records

HHS Delays Data Sharing Regulation Deadlines

Marianne Kolbasuk McGee • October 29, 2020

Citing the stretched health IT resources and heavy workloads healthcare organizations face as a result of the COVID-19 pandemic, federal regulators are delaying compliance deadlines for information blocking and health IT interoperability regulations.

Critical Infrastructure Security

US Hospitals Warned of Fresh Wave of Ransomware Attacks

Prajeet Nair • October 29, 2020

The FBI and CISA warn U.S. hospitals about a fresh wave of Ryuk ransomware attacks that have recently targeted healthcare facilities across the country. Over the past week, several hospitals have publicly reported attacks, which appear to be financially motivated.

Governance & Risk Management

100,000 Windows Devices Still Exposed to SMBGhost Flaw

Doug Olenick • October 29, 2020

Almost eight months after Microsoft warned of a critical vulnerability in Windows called SMBGhost, more than 100,000 unpatched devices remain vulnerable, according to security researchers. The COVID-19 pandemic and ensuing rush to move workers into home offices may have led to delays in applying the fix.

Cybercrime

Russian Hacking Group Upgrades Malicious Toolset

Akshaya Asokan • October 29, 2020

Turla, a hacking group based in Russia, is deploying a revamped set of customized tools to target potential victims, including a European government agency, for its espionage campaigns, according to Accenture.

Cyberwarfare / Nation-State Attacks

Microsoft: Iranian Hackers Targeted Security Experts

Akshaya Asokan • October 29, 2020

A hacking group linked to Iran's government targeted over 100 security and policy experts who are potentially attending two upcoming security conferences with phishing emails designed to steal credentials and gather intelligence, according to Microsoft.

Governance & Risk Management

Aetna Fined $1 Million After 3 Data Breaches

Marianne Kolbasuk McGee • October 28, 2020

Federal regulators have slapped health insurer Aetna with a $1 million HIPAA settlement for three 2017 breaches - including a mailing incident that exposed HIV information - that occurred within six months.

Cybercrime

Ryuk Ransomware Delivered Using Malware-as-a-Service Tool

Prajeet Nair • October 28, 2020

The operators behind the Ryuk strain of malware are increasingly relying on a malware-as-a-service tool - the Buer loader - to deliver the malware, rather than botnets such as Trickbot and Emotet, the security firm Sophos reports.

Encryption & Key Management

Analysis: The Security of 5G Devices, Networks

Doug Olenick • October 28, 2020

So far, much of the discussion about 5G security has focused on avoiding the use of technology from Chinese manufacturers, including Huawei and ZTE. But security experts are increasingly concerned that 5G network and device providers rushing products to market aren't devoting enough attention to security.

COVID-19

CISOs' Pandemic Challenge: More Disruption, Less Budget

Mathew J. Schwartz • October 28, 2020

The imperative for CISOs during the COVID-19 pandemic is to do more with less. While disruptive attacks - as well as privacy concerns - keep rising, budgets are down. As organizations rapidly adopt new technologies, however, EY's Kris Lovejoy says CISOs must seize the opportunity to streamline.

Cyberwarfare / Nation-State Attacks

Sizing Up Activities of North Korea's Kimsuky APT Group

Chinmay Rautmare • October 28, 2020

The U.S. Cybersecurity and Infrastructure Security Agency and the FBI have issued an alert providing details on the activities of a North Korean hacking group dubbed Kimsuky. The group, which has primarily focused on South Korean targets, has also conducted espionage campaigns in the U.S. and Japan.

Endpoint Security

New Online Platform Coordinates IoT Bug Reports

Jeremy Kirk • October 27, 2020

A new online platform called VulnerableThings.com is aiming to become the go-to place for reporting and viewing reports on software flaws in IoT devices. The IoT Security Foundation and Oxford Information Labs say the platform could help vendors comply with new IoT regulations and standards.