GitHub – reemertastic/infosec-spam-list: List of unwarranted sales email domains you can add to your junk mail filter
I somehow got signed up for a conference and had my email get put on a list a few years
Read moreInformation Security
Critical, Unpatched ‘MDhex’ Bugs Threaten Hospital Devices
The Feds have warned on six vulnerabilities in GE medical equipment that could affect patient monitor alarms and more.
Read moreU.S. Gov Agency Targeted With Malware-Laced Emails
The malicious email campaign included a never-before-seen malware downloader called Carrotball, and may be linked to the Konni Group APT.
Read moreRansomware: The average ransom payment has doubled in just three months
A new report into the state of ransomware at the tail end of 2019 has revealed that things aren’t getting any better.
Read more in my article on the Tripwire State of Security blog.
Read moreVirusTotal is not an Incident Responder – a tool that aids in analysis should not be a “one-stop-shop” in determining if content is malicious. Attackers can easily manipulate these results.
Reliance on tools like this to come up with conclusions, means that there must be a lack of tools provided
Read moreApple Dropped Plan For Encrypting Backups After FBI Complained
According to Reuters, Apple dropped plans to let iPhone users fully encrypt backups of their devices in the company’s iCloud service after the FBI complained that the move would harm investigations. The tech giant’s reversal, about two years ago, has not previously been reported. It shows how much Apple has been willing to help U.S. law …
The ISBuzz Post: This Post Apple Dropped Plan For Encrypting Backups After FBI Complained appeared first on Information Security Buzz.
Read moreMicrosoft Exposes 250M Customer Support Records On Leaky Servers – Experts Comments
Microsoft disclosed a security breach that led to the accidental exposure of around 250 million customer support and service records, some containing personally identifiable information, between 05 and 31 December 2019. The exposure was caused by a misconfigured internal customer support database, which consisted of a cluster of five Elasticsearch servers, a technology used to …
The ISBuzz Post: This Post Microsoft Exposes 250M Customer Support Records On Leaky Servers – Experts Comments appeared first on Information Security Buzz.
Read moreRyuk Ransomware Hit Multiple Oil & Gas Facilities, ICS Security Expert Says
Attackers ‘weaponized’ Active Directory to spread the ransomware.
Read moreWeathering the Privacy Storm from GDPR to CCPA & PDPA
A general approach to privacy, no matter the regulation, is the only way companies can avoid a data protection disaster in 2020 and beyond.
Read moreBitPyLock Ransomware Evolves Its Tactics
The new BitPyLock ransomware seems to have stepped up its game, going from targeting individual workstations to spreading to the network in a file-stealing spree. Discovered at the beginning of the month by MalwareHunterTeam, the bug has claimed new victims almost daily. Interestingly, the ransom notes have already evolved to reflect the progressively ambitious aims […]
The post BitPyLock Ransomware Evolves Its Tactics appeared first on IT Security Guru.
Read more