Source: U.S. Cyber Command

US Sends Cyber Team to Aid Albania's Cyber Defenses

Mihir Bagwe • March 24, 2023

The United States sent its top cyber offensive team to NATO ally Albania to help secure the nation's critical infrastructure networks. The Cyber National Mission Force helped find cyberthreats and vulnerabilities on networks likely targeted last year by Iranian threat actors.

Cyber Insurance

How Russia's Ukraine War Disrupted the Cybercrime Ecosystem

Latest

Cybercrime

How BreachForums' 'Pompompurin' Led the FBI to His Home

David Perera • March 24, 2023

The alleged administrator of criminal online forum BreachForums may have thought he took steps to hide his real identity, but instead he left a trail of digital breadcrumbs that led to his arrest and prosecution, shows information unsealed in federal court.

Incident & Breach Response

Corelight Pursues IR Partnerships, Smaller Enterprise Deals

Michael Novinson • March 24, 2023

Corelight has cemented partnerships with incident response firms and extended its capabilities from large enterprises to midsized enterprises to further the reach of its technology. Corelight allows its product to be used by CrowdStrike's incident response team during network-based investigations.

Encryption & Key Management

GitHub Replaces Private RSA SSH Key After Public Exposure

Mathew J. Schwartz • March 24, 2023

GitHub has replaced its private RSA SSH host key after discovering it was being inadvertently exposed to the public via a GitHub repository. Used to safeguard SSH access to Git operations, a bad actor could use the key to impersonate GitHub or eavesdrop. But GitHub reported no signs of abuse.

Cyberwarfare / Nation-State Attacks

ISMG Editors: What's Next in Russia's Cyber War?

Anna Delaney • March 24, 2023

In the latest weekly update, ISMG editors discuss how Russia's invasion of Ukraine upended the cybercrime ecosystem, a lawsuit against a U.S. cardiovascular clinic that seeks a long list of security improvements, and the latest endpoint protection technology trends in the Gartner Magic Quadrant.

Cybercrime

Report: Threat Landscape Growing Scarier for Healthcare

Marianne Kolbasuk McGee • March 23, 2023

Threats that traditionally menaced other industries - including synthetic accounts and abuse of IT product platforms - are emerging worries for the healthcare sector, warns an industry report. Other experts also predict a similar evolution among criminal activities affecting the healthcare sector.

Breach Notification

Breach Roundup: Ferrari, Indian Health Ministry and the NBA

Mihir Bagwe • March 23, 2023

This week's roundup of cybersecurity incidents around the world includes attacks on luxury car manufacturer Ferrari, the Indian health system and a Dutch maritime logistics company. Other data breach incidents involve the NBA, Lionsgate, the city of Oakland, McDonald's and Samsung.

Card Not Present Fraud

Online Card Fraud Flourishes, Thanks to the Magnetic Stripe

Suparna Goswami • March 23, 2023

EMV chip technology has taken a major bite out of credit card fraud at the point of sale, but card-not-present fraud continues to flourish thanks to an age-old technology - the magnetic stripe, says Mark Solomon, international president, International Association of Financial Crimes Investigators.

Identity & Access Management

Splashtop Buys Foxpass to Bring Enterprise IAM to the Masses

Michael Novinson • March 23, 2023

Remote access provider Splashtop has bought server and network access management vendor Foxpass to get better visibility across co-managed and multi-tenant environments. The acquisition of Foxpass will simplify the onboarding experience for developers while ensuring passwords aren't being shared.

HIPAA/HITECH

DC Health Link Facing Lawsuits in Hack Affecting Congress

Marianne Kolbasuk McGee • March 22, 2023

The DC Health Benefit Exchange Authority - the online health insurance marketplace servicing Washington, D.C., residents and congressional staff - is facing two proposed class action lawsuits in the aftermath of a hack that affected more than 56,400 individuals, including members of Congress.

Cloud Security

Orca Promotes CPO Gil Geron to CEO to Drive Efficient Growth

Michael Novinson • March 22, 2023

Orca Security has promoted Chief Product Officer Gil Geron to CEO to help the agentless cloud security vendor maintain its market leadership and rapid growth. The leadership swap at Portland, Oregon-based Orca will result in Avi Shua moving to the newly created position of chief innovation officer.

Governance & Risk Management

Hackers Are Actively Exploiting Unpatched Adobe ColdFusion

Mathew J. Schwartz • March 22, 2023

Hackers have been actively exploiting vulnerabilities in ColdFusion to remotely compromise servers, Adobe warns. Since at least early January, attackers have been dropping web shells via ColdFusion, but it's unclear if only now-known vulnerabilities are being exploited, security researchers say.

Fraud Management & Cybercrime

Stung by Free Decryptor, Ransomware Group Embraces Extortion

Mathew J. Schwartz • March 22, 2023

Not all ransomware groups wield crypto-locking malware. Some have adopted other strategies. Take BianLian. After security researchers released a free decryptor for its malware, instead of encrypting files, the group chose to steal them and demand ransom solely for their safe return.