The Coming Storm – Computer Security Articles

Tricky Phish Angles for Persistence, Not Passwords

January 7, 2020 admin jeff jones, Latest Warnings, login.microsoftonline.com, michael tyler, Microsoft Office 365, microsoftonline.com, PhishLabs, The Coming Storm, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Tue, 07 Jan 2020 21:35:40 +0000

Late last year saw the re-emergence of a nasty phishing tactic that allows the attacker to gain full access to a user’s data stored in the cloud without actually stealing the account password. The phishing lure starts with a link that leads to the real login page for a cloud email and/or file storage service. Anyone who takes the bait will inadvertently forward a digital token to the attackers that gives them indefinite access to the victim’s email, files and contacts — even after the victim has changed their password.

Independent Krebs

The Hidden Cost of Ransomware: Wholesale Password Theft

January 6, 2020 admin A Little Sunshine, alex holden, Hold Security, karen christianson, mark schafer, ransomware, ryuk, sva consulting, The Coming Storm, vcpi

Credit to Author: BrianKrebs| Date: Mon, 06 Jan 2020 18:17:21 +0000

Organizations in the throes of cleaning up after a ransomware outbreak typically will change passwords for all user accounts that have access to any email systems, servers and desktop workstations within their network. But all too often, ransomware victims fail to grasp that the crooks behind these attacks can and frequently do siphon every single password stored on each infected endpoint. The result of this oversight may offer attackers a way back into the affected organization, access to financial and healthcare accounts, or — worse yet — key tools for attacking the victim’s various business partners and clients.

Independent Krebs

Ransomware Gangs Now Outing Victim Businesses That Don’t Pay Up

December 16, 2019 admin BleepingComputer, Lawrence Abrams, maze ransomware, ransomware, rEvil, Sodinokibi, The Coming Storm

Credit to Author: BrianKrebs| Date: Tue, 17 Dec 2019 02:21:23 +0000

As if the scourge of ransomware wasn’t bad enough already: Several prominent purveyors of ransomware have signaled they plan to start publishing data stolen from victims who refuse to pay up. To make matters worse, one ransomware gang has now created a public Web site identifying recent victim companies that have chosen to rebuild their operations instead of acquiescing to their tormentors.

Independent Krebs

It’s Way Too Easy to Get a .gov Domain Name

November 26, 2019 admin cisa, cybersecurity and infrastructure security agency, dotgov bill, dotgov.gov, exeterri.gov, John Levine, The Coming Storm, town.exeter.ri.us, U.S. Department of Homeland Security, u.s. general services administration, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Wed, 27 Nov 2019 02:08:55 +0000

Many readers probably believe they can trust links and emails coming from U.S. federal government domain names, or else assume there are at least more stringent verification requirements involved in obtaining a .gov domain versus a commercial one ending in .com or .org. But a recent experience suggests this trust may be severely misplaced, and that it is relatively straightforward for anyone to obtain their very own .gov domain.

Independent Krebs

Sale of 4 Million Stolen Cards Tied to Breaches at 4 Restaurant Chains

November 26, 2019 admin data breaches, focus brands, Gemini Advisory, Joker's stash, krystal breach, mcalister's deli breach, moe's breach, payment card industry security standards, pci, schlotsky's breach, The Coming Storm, Verizon

Credit to Author: BrianKrebs| Date: Tue, 26 Nov 2019 13:32:21 +0000

On Nov. 23, one of the cybercrime underground’s largest bazaars for buying and selling stolen payment card data announced the immediate availability of some four million freshly-hacked debit and credit cards. KrebsOnSecurity has learned this latest batch of cards was siphoned from four different compromised restaurant chains that are most prevalent across the midwest and eastern United States.

Independent Krebs

110 Nursing Homes Cut Off from Health Records in Ransomware Attack

November 22, 2019 admin alex holden, Hold Security, karen christianson, ransomware, The Coming Storm, vcpi

Credit to Author: BrianKrebs| Date: Sat, 23 Nov 2019 05:02:32 +0000

A ransomware outbreak has besieged a Wisconsin based IT company that provides cloud data hosting, security and access management to more than 100 nursing homes across the United States. The ongoing attack is preventing these care centers from accessing crucial patient medical records, and the IT company’s owner says she fears this incident could soon lead not only to the closure of her business, but also to the untimely demise of some patients.

Independent Krebs

Study: Ransomware, Data Breaches at Hospitals tied to Uptick in Fatal Heart Attacks

November 7, 2019 admin A Little Sunshine, department of health and human services, HHS, leo scanlon, owen graduate school of management, PBS, The Coming Storm, the new england journal of medicine, vanderbilt university, WannaCry

Credit to Author: BrianKrebs| Date: Thu, 07 Nov 2019 19:48:03 +0000

Hospitals that have been hit by a data breach or ransomware attack can expect to see an increase in the death rate among heart patients in the following months or years because of cybersecurity remediation efforts, a new study posits. Health industry experts say the findings should prompt a larger review of how security — or the lack thereof — may be impacting patient outcomes.

Independent Krebs

NCR Barred Mint, QuickBooks from Banking Platform During Account Takeover Storm

November 3, 2019 admin A Little Sunshine, credential replay attacks, digital insight, intuit, Mint, NCR Corp, quickbooks online, The Coming Storm, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Sun, 03 Nov 2019 21:41:48 +0000

Banking industry giant NCR Corp. [NYSE: NCR] late last month took the unusual step of temporarily blocking third-party financial data aggregators Mint and QuicBooks Online from accessing Digital Insight, an online banking platform used by hundreds of financial institutions. That ban, which came in response to a series of bank account takeovers in which cybercriminals used aggregation sites to surveil and drain consumer accounts, has since been rescinded. But the incident raises fresh questions about the proper role of digital banking platforms in fighting password abuse.

← Previous