Cyberlaw
BadBazaar: Chinese Spyware Shams Signal, Telegram Apps
Richi Jennings | | android, android spyware, APT15, BadBazaar, Flygram, google, Google Play Incompetence, Google Play Store, GREF, Lukas Stefanko, Nickel, Samsung, SB Blogwatch, signal, Signal Plus Messenger, spyware, Telegram, Vixen Panda
After sneaking into Google and Samsung app stores, “GREF” APT targets Uyghurs and other PRC minorities ...
Security Boulevard
Qakbot Cracked: FBI and Friends Hack the Hackers
Richi Jennings | | aresloader, Black Basta Ransomware, botnet, botnets, Department of Justice, Department of Justice (DOJ), DOJ, Duck Hunt, FBI, Federal Bureau of Investigation, justice department, loaders, Pinkslipbot, Qakbot, qakbot malware, Qbot, SB Blogwatch, takedown, takedowns, U.S. Department of Justice, U.S. Justice Department, United States Department of Justice, US Department of Justice, US FBI
Operation Duck Hunt shoots to kill big botnet ...
Security Boulevard
Did Russia Hack Poland’s Trains? MSM Says Yes, but … Well, You Decide
Richi Jennings | | Poland, RADIO-STOP, Rail Cybersecurity, railroad, Railway Security, Russia, SB Blogwatch, trains
Train Phreaking: It depends what you mean by “hack” (and by “Russia”) ...
Security Boulevard
CoC Asks SEC for More Time to Implement Cyber Reporting Rule
The U.S. Chamber of Commerce asked for more time to implement the required cybersecurity incident reporting rules and cybersecurity practices proposed by the SEC ...
Security Boulevard
Lapsus$ Jury Says Teen Duo Did Do Crimes
Richi Jennings | | Arion Kurtaj, Grand Theft Auto, Lapsus$, Ransomware, Rockstar Games, SB Blogwatch, Strawberry Tempest
Arion Kurtaj and anon minor: Part of group that hacked Uber, Nvidia, Microsoft, Rockstar Games and many more ...
Security Boulevard
Founders of Crypto Mixer Tornado Cash Indicted for Laundering $1 Billion
The U.S. government is taking a big swing at two founders of the Tornado Cash cryptocurrency mixer that allegedly laundered more than $1 billion in criminal proceeds from cyberthreat actors that include ...
Security Boulevard
Insider IP Theft: Knicks sue Toronto Raptors for a Flagrant Foul
Christopher Burgess | | Cybersecurity, insider risk, Insider Risk Management, New York Knicks, Toronto Raptors
Fans of basketball are used to seeing bodies bouncing off one another as they race from one end of the court to the other, but rarely do we see an NBA franchise ...
Security Boulevard
Ransomware Robs Realtors — Rapattoni MLS-aaS Down: Day 8 and Counting
Richi Jennings | | legacy, Legacy Application, legacy applications, legacy apps, legacy IT, legacy Software, legacy system security risk, legacy systems, MLS, Ransomware, Rapattoni, real estate, real estate agents, realtors, SaaS, SB Blogwatch
MLS FAIL: Home listings SaaS dead in the water as real estate agents lose leads ...
Security Boulevard
What is a Social Engineering Attack?
In this blog, we cover some of the more common types of social engineering - phishing, baiting, pretexting, quid pro quo, and tailgating. The post What is a Social Engineering Attack? appeared ...
Teenage Hackers Must be Stopped: US DHS’s CSRB Report
Richi Jennings | | 2 factor auth, 2-factor authentication, 2fa, 2FA bypass, 2FA Flaws, 2FA phishing, 2FA policies, 2FA/MFA, cellphone fraud, CSRB, Cyber Safety Review Board, Department of Homeland Security, DHS, DUAL FACTOR AUTHENTICATION, factor auth, homeland security, Homeland Security Presidential Directive, homelandsecurity, Lapsus$, Multi-Factor Authentication, Multi-Factor Authentication (MFA), Multifactor Authentication, SB Blogwatch, SIM swap, sim swap fraud, SIM swap scams, SIM swapping, two factor authentication, U.S. Department of Homeland Security, United States Department of Homeland Security, US Homeland Security
2FA SMS FAIL: Lapsus$ social engineers exploited weak two-factor authentication. Something must be done! (Well, this is something.) ...
Security Boulevard