US State Department offering $10 million reward for state-backed hackers
ZDNet, Jonathan Greig
“The measure is aimed squarely at those participating in malicious cyber activities against US critical infrastructure…. In addition to ransomware, the notice mentions a number of other cyber violations and notes that it applies to government computers as well as those used in or affecting interstate or foreign commerce or communication.” Read More
Google: Russian Hackers Used LinkedIn to Deliver iPhone-Based Attack
PC Magazine UK, Michael Kan
“In this campaign, attackers used LinkedIn Messaging to target government officials from western European countries by sending them malicious links. If the target visited the link from an iOS device, they would be redirected to an attacker-controlled domain that served the next stage payloads.” Read More
These Iranian hackers posed as academics in a bid to steal email passwords
ZDNet, Danny Palmer
“…the campaign also compromised a university-affiliated website in an effort to deliver personalised credential harvesting pages to targets, under the guise of inviting them to speak in a webinar on Middle Eastern issues.” Read More
Fashion retailer Guess discloses data breach after ransomware attack
Bleeping Computer, Sergiu Gatlan
“The investigation determined that Social Security numbers, driver’s license numbers, passport numbers and/or financial account numbers may have been accessed or acquired.” Read More
Kaseya was warned about security flaws years ahead of ransomware attack
Engadget, Jon Fingas
“Employees reportedly complained that Kaseya was using old code, implemented poor encryption and even failed to routinely patch software.” Read More
