Security Blueprints of Many Companies Leaked in Hack of Swedish Firm Gunnebo

Credit to Author: BrianKrebs| Date: Wed, 28 Oct 2020 16:58:55 +0000

In March 2020, KrebsOnSecurity alerted Swedish security giant Gunnebo Group that hackers had broken into its network and sold the access to a criminal group which specializes in deploying ransomware. In August, Gunnebo said it had successfully thwarted a ransomware attack, but this week it emerged that the intruders stole and published online tens of thousands of sensitive documents — including schematics of client bank vaults and surveillance systems. The Gunnebo Group is a Swedish multinational company that provides physical security to a variety of clients globally, including banks, government agencies, airports, casinos, jewelry stores, tax agencies and even nuclear power plants. The company has operations in 25 countries, more than 4,000 employees, and billions in revenue annually.

Read more

Amid an Embarrassment of Riches, Ransom Gangs Increasingly Outsource Their Work

Credit to Author: BrianKrebs| Date: Thu, 08 Oct 2020 19:42:04 +0000

There’s an old adage in information security: “Every company gets penetration tested, whether or not they pay someone for the pleasure.” Many organizations that do hire professionals to test their network security posture unfortunately tend to focus on fixing vulnerabilities hackers could use to break in. But judging from the proliferation of help-wanted ads for offensive pentesters in the cybercrime underground, today’s attackers have exactly zero trouble gaining that initial intrusion: The real challenge seems to be hiring enough people to help everyone profit from the access already gained.

Read more

Attacks Aimed at Disrupting the Trickbot Botnet

Credit to Author: BrianKrebs| Date: Fri, 02 Oct 2020 18:20:26 +0000

Over the past 10 days, someone has been launching a series of coordinated attacks designed to disrupt Trickbot, an enormous collection of more than two million malware-infected Windows PCs that are constantly being harvested for financial data and are often used as the entry point for deploying ransomware within compromised organizations.

Read more