Day: November 8, 2021

NSO fails once again to claim foreign sovereign immunity in WhatsApp spying lawsuit

Spyware maker NSO Group cannot use its government clients to shield itself from litigation, a US appeals court ruled on Monday, a decision that allows WhatsApp’s lawsuit against the Israel-based firm to resume. In 2019, Facebook and its WhatsApp subsidiary sued NSO claiming the firm’s intrusion software, known as Pegasus, was used to unlawfully compromise …

NSO fails once again to claim foreign sovereign immunity in WhatsApp spying lawsuit Read More »

Police shuts down scam operation that stole millions from hundreds of people

A police operation in Spain led to the arrest of 45 individuals accused of participating in a fraudulent scheme that would have defrauded more than 200 people. The fraud operators would have acted from an African country through individuals acting as mules, many of them even against their will and under threat of death. This …

Police shuts down scam operation that stole millions from hundreds of people Read More »

Threat Hunting Certificate Account Persistence

The role of Certification Authority is to provide trust between different active directory entities or as an authentication mechanism in order to access specific resources such as web applications and services in a secure manner. Deployment of a Certification Authority across a windows domain can provide opportunities to threat actors for abuse that involves persistence …

Threat Hunting Certificate Account Persistence Read More »

Threat actor DEV-0322 exploiting ZOHO ManageEngine ADSelfService Plus

Microsoft has detected exploits being used to compromise systems running the ZOHO ManageEngine ADSelfService Plus software versions vulnerable to CVE-2021-40539 in a targeted campaign. Microsoft Threat Intelligence Center (MSTIC) attributes this campaign with high confidence to DEV-0322, a group operating out of China, based on observed infrastructure, victimology, tactics, and procedures. MSTIC previously highlighted DEV-0322 …

Threat actor DEV-0322 exploiting ZOHO ManageEngine ADSelfService Plus Read More »

U.S. offers $10 million reward for leaders of REvil ransomware

The U.S. is offering up to $10 million for identifying or locating leaders in the REvil (Sodinokibi) ransomware operation, including $5 million leading to the arrest of affiliates. This bounty is being offered as part of the Department of State’s Transnational Organized Crime Rewards Program (TOCRP), which rewards informants for information that leads to the arrest or …

U.S. offers $10 million reward for leaders of REvil ransomware Read More »

Investor Group to acquire McAfee for over $14 Billion

McAfee announced it has entered into a definitive agreement to be acquired by an investor group led by Advent International Corporation (“Advent”) and Permira Advisers LLC (“Permira”), Crosspoint Capital Partners (“Crosspoint Capital”), Canada Pension Plan Investment Board (“CPP Investments”), GIC Private Limited (“GIC”), and a wholly owned subsidiary of the Abu Dhabi Investment Authority (“ADIA”) …

Investor Group to acquire McAfee for over $14 Billion Read More »

Russia Slaps Google With New Fine For Violating Internet Law

Radio Free Europe/Radio Liberty reports: A Russian court has ordered Google to pay 2 million rubles ($28,085) for violating the country’s rules on banned content. In recent months, Russian courts have ordered Google to pay fines totaling hundreds of thousands of dollars for failing to delete banned content on its search engine and YouTube. Read …

Russia Slaps Google With New Fine For Violating Internet Law Read More »

Cisco tool makes it easier to meld SD-WAN, security domains

Cisco has upgraded two of its core software programs to make it easier for enterprise customers to secure data-center and WAN-connected resources.https://www.networkworld.com/article/3599213/what-are-data-centers-how-they-work-and-how-they-are-changing-in-size-and-scope.html Cisco has introduced what it calls Integrated Domain, which combines the domain controllers of Cisco DNA Center and Cisco SD-WAN vManage to tie together network connectivity between the two domains as well as …

Cisco tool makes it easier to meld SD-WAN, security domains Read More »

Europol arrests 8 partners of the fugitive, billionaire and MOST DANGEROUS hacker

This week, Romanian police arrested two individuals accused of deploying cyberattacks using the REvil ransomware variant, also known as Sodinokibi, as part of Operation GoldDust. In total, the defendants allegedly participated in 5,000 attacks, profiting hundreds of thousands of dollars. Coordinated by Europol, Operation GoldDust has led to the arrest of multiple members of different …

Europol arrests 8 partners of the fugitive, billionaire and MOST DANGEROUS hacker Read More »

Rockwell Automation announces investments to enhance its incident response services

Rockwell Automation announced new investments to enhance its information technology (IT) and operational technology (OT) cybersecurity offering, better equipping customers with the protection they need in today’s perilous environment. These initiatives include strategic partnerships with Dragos, Inc. and CrowdStrike, as well as the establishment of a new Cybersecurity Operations Center in Israel. “Implementing strong cybersecurity …

Rockwell Automation announces investments to enhance its incident response services Read More »

Ping Identity appoints Shalini Sharma as Chief Legal Officer

Ping Identity appointed Shalini Sharma its new Chief Legal Officer, effective January 10, 2022. She will head the company’s legal department and serve as the primary source of legal advice for issues spanning governance, IP, compliance, privacy, labor, commercial, and strategic transactions. Sharma is a seasoned legal professional with more than 23 years of international …

Ping Identity appoints Shalini Sharma as Chief Legal Officer Read More »

NSO’s Pegasus spyware found on the devices of six Palestinian activists

The mobile phones of six Palestinian human rights activists have been infected with Pegasus, a spyware strain developed and sold by Israeli surveillance company NSO Group. The malware was found by members of Frontline Defenders, a non-profit organization that works to protect human rights activists. Their findings were independently verified and confirmed by security researchers from Amnesty International and Citizen …

NSO’s Pegasus spyware found on the devices of six Palestinian activists Read More »

Attivo ThreatStrike Anmeldedaten vor Angreifer-Tools verbergen

Mit der Lösung ThreatStrike bietet Attivo Unternehmen eine Möglichkeit, die Anmeldedaten von Mitarbeitern vor Hackern zu verbergen. Außerdem können sie falsche Informationen als Köder auslegen, um mehr über das Verhalten der Angreifer herauszufinden. Zugangsdaten von Mitarbeitern, die den Zugriff auf personenbezogene Daten oder Firmengeheimnisse ermöglichen, sind für Hacker besonders lukrative Ziele. Schließlich können sie damit Unternehmen erpressen und Lösegelder …

Attivo ThreatStrike Anmeldedaten vor Angreifer-Tools verbergen Read More »

Ransomware groups attack casinos on Native American reservations

The Federal Bureau of Investigation (FBI) issued a private industry alert to notify casino owners on tribal properties about an aggressive ransomware campaign that has infected various establishments, completely crippling their operations. Authorities are identifying this wave of attacks as an active hacking campaign since 2016. Apparently, the establishments affected with the encryption malware had …

Ransomware groups attack casinos on Native American reservations Read More »

Attivo Networks Participation in MITRE® Engenuity ATT&CK® Evaluations Trials

Authored by: Carolyn Crandall, Chief Security Advocate – MITRE® Engenuity ATT&CK Evaluation Trials for deception are about to begin, and Attivo Networks is excited to announce that we will participate in the research project. These evaluation trials test best-of-breed security solutions and deliver clarity around their performance and coverage aligned to ATT&CK. How MITRE® ATT&CK …

Attivo Networks Participation in MITRE® Engenuity ATT&CK® Evaluations Trials Read More »

McAfee’s Consumer Business to Be Acquired by Private Equity Groups

The McAfee consumer security business, which trades on the NASDAQ under the symbol MCFE, will be going private in a deal valued at more than $14 billion. McAfee had sold its Enterprise business just a few months ago, to a private consortium led by Symphony Technology Group (STG) – and McAfee Enterprise was subsequently merged …

McAfee’s Consumer Business to Be Acquired by Private Equity Groups Read More »