<img src="https://secure.ruth8badb.com/159098.png" alt="" style="display:none;">

IT Security Newsletter

Get the latest headlines, summaries, and security news!

IT Security Newsletter - 6/8/2021

Top News

US seizes $2.3 million Colonial Pipeline paid to ransomware attackers

The FBI said it has seized $2.3 million paid to the ransomware attackers who paralyzed the network of Colonial Pipeline and touched off gasoline and jet fuel supply disruptions up and down the East Coast last month. In dollar amounts, the sum represents about half of the $4.4 million that Colonial Pipeline paid to members of the DarkSide ransomware group following the May 7 attack, The Wall Street Journal reported, citing the company's CEO. READ MORE...

Breaches

US truck and military vehicle maker Navistar discloses data breach

Navistar International Corporation (Navistar), a US-based maker of trucks and military vehicles, says that unknown attackers have stolen data from its network following a cybersecurity incident discovered on May 20, 2021. The company disclosed the attack in an 8-K report filed with the Securities and Exchange Commission (SEC) on Monday. Navistar says that its operations haven't been affected despite the security breach as its IT systems are fully operational. READ MORE...

Hacking

Evil Corp Impersonates PayloadBin Group to Avoid Federal Sanctions

The criminal group Evil Corp is trying to mask its latest activity by using previously unknown ransomware called PayloadBin, according to researchers. The move is believed to be an attempt to confuse law enforcement and avoid sanctions imposed by the U.S. federal government against entities it believes are linked to Evil Corp, according to published reports. Evil Corp, widely associated with the info-stealing Dridex malware, has been the target of a crackdown by U.S. authorities since 2019. READ MORE...

Malware

Windows Container Malware Targets Kubernetes Clusters

Windows containers have been victimized for over a year by the first known malware to target Windows containers. The ongoing campaign pierces Kubernetes clusters so as to plant backdoors, allowing attackers to steal data and user credentials, or even hijack an entire databases hosted in a cluster. The malware was discovered by Unit 42 security researcher Daniel Prizmant. He dubbed it Siloscape, which he pronounces "Silo escape." READ MORE...

Information Security

NortonLifeLock Criticized for New Cryptomining Feature

NortonLifeLock has opened up a crypto can of worms with a new product feature that allows users to dedicate spare graphics-chip cycles to mine the Ethereum digital currency. While cryptocurrency proponents lauded the new feature, announced last week, many questioned why a security company would add a feature that consumes massive amounts of energy and supports the speculative digital payment system that has become the de facto mechanism to collect profits from cybercrime. READ MORE...


Insurer Chubb paid $65,000 to help a city unlock ransomware in 2018. A second hack was more expensive.

A city in California didn't disclose a ransomware payment for more than two years after its insurer covered the cost, the city manager acknowledged amid yet another ransomware attack on the municipality. In 2018, officials in Azusa, Calif. paid $65,000 through its insurer Chubb to free up its most vital system and used a free decryption key to unlock the others, City Manager Sergio Gonzalez said. READ MORE...

Exploits/Vulnerabilities

Hacked drones and busted logistics are the cyber future of warfare

"If you think any of these systems are going to work as expected in wartime, you're fooling yourself." That was Bruce Schneier's response at a conference hosted by U.S. Transportation Command in 2017, after learning that their computerized logistical systems were mostly unclassified and on the internet. That may be necessary to keep in touch with civilian companies like FedEx in peacetime or when fighting terrorists or insurgents. But in a new era facing off with China or Russia, it is dangerously complacent. READ MORE...

Science & Culture

Hacking space: How to pwn a satellite

Getting root on something floating above our planet (or any other for that matter) would seem like a new form of hacking Holy Grail. Don't worry though, someone's already working on it - believe it or not. Because when you break something in space, bad things happen. Just ask any space movie fan. The U.S. National Institute of Standards and Technology, in a non-enforcement capacity, is hoping to convene the parties who might touch space code and hardware and provide some guidelines. READ MORE...

On This Date

  • ...in 1966, the National and American Football leagues announce that they will merge, forming the modern NFL.
  • ...in 1968, James Earl Ray is arrested for the assassination of Dr. Martin Luther King, Jr.
  • ...in 1968, Senator Robert F. Kennedy is buried in Arlington National Cemetery.
  • ...in 1970, The Beatles final single, "The Long and Winding Road", hits #1 on Billboard's charts.