IT Security Newsletter - 2/21/2020
Georgia Blames Russia for Cyberattack, US, UK Agree
Georgian authorities on Thursday accused Russia's military intelligence of launching a large-scale cyberattack that targeted the government and private organizations with the goal of destabilizing the ex-Soviet nation. The United States and Britain also weighed in, strongly condemning the alleged action by Russia in October. A senior Russian diplomat dismissed the accusations. READ MORE...
ISS World Hit with Malware Attack that Shuts Down Global Computer Network
A Denmark-based global facility-management company was hit with a major cyber attack this week that shut down its worldwide computer systems for a few days and disrupted operations across its global network of employees. ISS World cut off access to shared IT services across its customer sites and offices worldwide after it was the target of a malware attack on Monday, Feb. 17, the company said in a press statement. READ MORE...
Pentagon's tech agency reveals potential breach involving personal data
The agency that secures the U.S. military's IT infrastructure across the globe says sensitive personal data, including Social Security numbers, hosted on its network may have been compromised in a breach between May and July 2019. The Defense Information Systems Agency notified potential victims of the breach in a letter this month, saying it had tightened protocols for protecting personally identification information (PII) because of the incident. READ MORE...
Fraudulent Login Attacks Against Banks Surge: Akamai
On August 7, 2019, a single credential stuffing attack against a financial services company recorded 55,141,782 malicious login attempts. To put that in perspective, it is more than twice the daily average (22,682,022) of credential abuse attacks detected by Akamai Technologies across all companies in all sectors between December 1, 2017, and November 30, 2019 (a total of 85.42 billion attempts). READ MORE...
FTC Refunds Victims of Office Depot Tech Support Scam
The FTC has begun to issue refunds to people who were convinced into purchasing computer repair services at Office Depot based on fake malware scans. Between 2009 and November 2016, Office Depot and Office Max employees utilized a diagnostic program called 'PC Health Check' that would in many cases report a person's computer had malware even if it was not infected. READ MORE...
Critical Cisco Bug Opens Software Licencing Manager to Remote Attack
A critical flaw in the High Availability (HA) service of Cisco Smart Software Manager On-Prem Base has been uncovered, which would open the door to remote attackers thanks to its use of a static, default password, even if the platform isn't directly connected to the internet. Cisco Smart Software Manager On-Prem Base is used to manage a customer or partner's product licenses, providing near real-time visibility and reporting of the Cisco licenses that an organization purchases and consumes. READ MORE...
Larry Tesler, of copy-and-paste fame, dies at 74
Larry Tesler, the computer scientist who is widely credited with the copy-and-paste function that is now nearly ubiquitous in user interfaces, has died at 74. Tesler - note the spelling! - worked at the influential Xerox Palo Alto Research Center, better known as PARC, in the 1970s. Old-timers in the computer industry will tell you that "everything that we take for granted in computing these days was invented at PARC", and there's a grain of truth in that rose-tinted reminiscence. READ MORE...