The FBI recently issued an alert about the abuse of the DiskCryptor open-source tool by the Mamba ransomware to encrypt entire drives as well as the operating system. Mamba ransomware, also referred to as HDDCryptor, has been active for nearly half a…

Researchers from Kaspersky have discovered that attacks on industrial control system (ICS) computers went up by .85 percentage points in H2 of 2020 compared to H1.  The researchers also found that the variety of malware families targeting ICS…

Researchers at the security vendor Cato Networks discovered two dozen malicious Google Chrome browser extensions. They also found 40 malicious domains associated with the extensions that are being used to inject adware, steal credentials, and redirect…

Streaming services have become increasingly attractive targets in the launch of malicious bots by cybercriminals to steal customer account information. Customers often use easier password combinations for streaming services because these services do not…

Researchers from Rewind, a provider of cloud backups for SaaS applications, discovered that 40% of Software as a Service (SaaS) users across a range of industries had lost data stored in their online tools. A total of 631 respondents answered questions…

Researchers at Ponemon Institute discovered that threat data feeds could help organizations strengthen their cybersecurity posture.  The researchers surveyed 1025 IT security practitioners (70% of whom were at or above the supervisory level) in the…

The computer manufacturer Acer has fallen victim to the REvil ransomware attack, with the threat actors demanding a ransom of more than $50 million. The ransomware operators infiltrated Acer's network systems. They allegedly shared images of the files…

A ransomware attack on leading internet-of-things (IoT) manufacturer Sierra Wireless this week grounded its production activity to a halt and froze various other internal operations.  The Canadian multinational manufacturer creates a broad array of…

Researchers at Guardicore Labs have discovered that a malware that has historically targeted exposed Windows machines through phishing and exploit kits has been retooled to add new “worm” capabilities.  Purple Fox, which first appeared in 2018, is…

Cyber Scene #54 - US-China: Cyber Syndrome or War of the Worlds?  

SoS Musings #47 - The Problem with False Positives in Security Operations

Security researchers at Check Point have observed a 300 percent increase in listings on the dark web marketplaces advertising vaccine doses, falsified vaccine certifications, negative test results, and more in the last three months. According to the…