Search Results for "ransomware"

Firm that discovered CCleaner Compromise: there may be Others

The firm that discovered the CCleaner attack thinks there may be other common applications that, like CCleaner, have been secretly compromised and used to gain access to corporate networks. Engineers at the firm Morphisec are reviewing historical reports that were considered “false positives” to determine if any of those reports may have been evidence of compromises of other common applications, Chief Technology Officer Michael Gorelik told The Security Ledger. “It’s something we’re doing right now. We’re revalidating stuff that we caught within the last several months,” he said. While Gorelik declined to say whether they had found evidence that other, similar attacks had taken place, he said the initial findings of the investigation were “very interesting.” “They’re very interesting events and when you go deeper they become more interesting,” he said.  He said he believed there were other so-called supply chain attacks like CCleaner, but declined to say whether his firm […]

Continue Reading

Is CCleaner the Tip of an Iceberg of Supply Chain Hacks? And Alexa: did China hack us Last Night?

In the latest Security Ledger podcast, Paul speaks with Michael Gorelik of the firm Morphisec about the hack of security software vendor CCleaner – a hack that Gorelik’s firm discovered. CCleaner, he says, may just be the tip of the iceberg when it comes to supply chain hacks. And: “Alexa: have we been hacked by China?” Paul speaks with Grant Wernick of the firm Insight Engines, which is releasing a product this week that integrates the Splunk log management tool with Amazon’s voice assistant. 

Continue Reading

FedEx: NotPetya Cost $300m, Wrecked Q1 Earnings

FedEx, the worldwide package delivery giant, said in a regulatory filing on Tuesday that the NotPetya ransomware outbreak in late June has cost it an estimated $300 million dollars and forced the company to miss its fiscal first quarter earnings. The company said in its quarterly “8K” report to the U.S. Securities and Exchange Commission (SEC) that the impact of NotPetya on TNT Express N.V., a newly acquired subsidiary based in The Netherlands. “Worldwide operations of TNT Express were significantly affected during the first quarter by the June 27 NotPetya cyber attack,” the company reported. The subsidiary has restored “substantially all” critical operational systems but “volume, revenue and profit still remain below previous levels.” The statement is the latest on the effects of NotPetya, which spread by way of bogus updates for software by the Ukrainian firm MeDoc. In July, FedEx said in a filing with the Securities and Exchange Commission […]

Continue Reading

Hero WannaCry Researcher Charged over Links to Kronos Trojan

In-brief: A British researcher who became a hero after he stopped the WannaCry ransomware from spreading globally has been apprehended in Nevada and charged with distributing the Kronos banking trojan in the U.S. between July 2014 and July 2015.

Continue Reading

Update: WHISTL Labs will be Cyber Range for Medical Devices

In-brief:  A global federation of labs will test the security of medical devices, according to an announcement on Monday by a consortium of healthcare industry firms, universities and technology firms. (Updated with comments from Dr. Nordenberg. PFR 7/25/2017)

Continue Reading
1 30 31 32 33 34 42