Many of today’s businesses are beholden to a fundamental weakness—they are blind to the scope of their true perimeter. As businesses grow larger, their vast third-party vulnerabilities unfurl themselves, exposing the business to huge risks they aren’t even aware of....
As if the world needed another example, a ransomware group has proven there is no honor among thieves. The cybercriminal group Maze attacked the network of Hammersmith Medicines Research, a London-based medical research company, on March 14. The group then leaked the personal data and medical details of thousands of former patients online, according to ComputerWeekly. HMR is one of several London firms situated to conduct medical trials for COVID-19 vaccines. Beyond the despicable nature of the attack, of note is that Maze had made a public vow on March 18 not to...
TA505, a notorious cybercriminal group believed to be operating in Russia, is using business email compromise tactics to target a new group of victims - HR departments, according to researchers from Prevailion, a security monitoring firm. ...
Fake websites that claim to offer information or treatments for coronavirus are another significant threat. The security industry has already uncovered one case in which hackers are using an interactive map of coronavirus infections created by Johns Hopkins University to trick people into landing on a malicious website. They are selling these ‘infection kits’ to other hackers in the Dark Web, said Karim Hijazi, CEO of Prevailion, a cyber intelligence company headquartered in Columbia, Maryland. ...
Just shy of a week after Microsoft squeezed cyber criminals out of the prolific Necurs botnet infrastructure, threat actors like TA505 still maintain a foothold on networks throughout the world. Findings from Prevailion's compromise intelligence platform on Wednesday showed the IP addresses TA505 have actively infected around the globe. Prevailion's Chief Data Scientist Nate Winslow shared a map of this activity, along with his insight of the findings, on LinkedIn today. "Cyber crime is not slowing down because of COVID-19. The TA505 group is a prime example we see in our data. If...
The Tailored Intelligence Team at Prevailion has detected a new campaign—at least a facet of which is currently active—dubbed The Curious Case of the Criminal Curriculum Vitae. ...
Millions of people are working from home around the world as the coronavirus pandemic spreads and authorities plead for people to stay at home to slow the rate of contagion. ...
Whenever there's a crisis, there are people who try to help. There are also some who attempt to take advantage of the situation by creating scams. Here are the ones you need to watch out for. ...
With COVID-19, there is a wave of new teleworkers hitting internet infrastructure. Cyber criminals will actively look for ways to take advantage of these teleworkers in order to gain access to otherwise secure company networks....
VPNs alone won’t protect workers from unsecured work environments. “Wash your hands. Don't scratch your nose. Try to avoid public spaces.” In the weeks leading up to COVID-19’s ascendance to a pandemic, we've all become more aware of our touch points as we go about our daily lives trying to avoid infection. If businesses practiced this level of vigilance for their network touch points, and their daily exposure to infected surfaces, threat actors would have a much smaller playground in which to operate. When businesses agree on connecting with each other, often it's...