Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days.
Below you’ll find a quick recap of topics followed by links to news articles and/or our blog posts providing additional insight. Be sure to check back each Friday for highlights of the goings-on each week!
System administrators from all over the world know what the second Tuesday of the month brings: the regularly scheduled bounty of patches from Microsoft and other vendors. Because June started on a Wednesday, this month’s Patch Tuesday was on June 14, which is the latest it can be in any given month. This month’s volume of patches doesn’t differ too much from May’s. This month’s fixes are in sixteen bulletins, with five rated critical.
Hackers connected to the Russian government broke into the servers of the Democratic National Committee and stole opposition research on Donald Trump, the cybersecurity experts responding to the intrusion said Tuesday. Two separate Russian intelligence-linked cyberattack groups were both in the DNC’s networks, Dmitri Alperovitch, co-founder and chief technology officer of CrowdStrike, which responded to the breach, told CNN. They likely didn’t even know the other was in the systems, he added.
Users of the TeamViewer remote-access service have been complaining in recent weeks about how their systems have been hacked into, unauthorized purchases made on their cards, their bank accounts emptied. Initially it was believed that this was due to a hack into TeamViewer itself, but the company has denied this.
How do companies regardless of size and industry prepare for ransomware attacks? A recent study revealed that businesses are considering saving up Bitcoins, just in case they get hit by these threats and can recover their confidential files in a short span of time. While we don’t recommend succumbing to the ransom payment as it doesn’t guarantee that you’ll get your files back.
Using multiple devices that run on one platform makes life easier for a lot of people. However, if a malware affects one of these devices, the said malware may eventually affect the others, too. This appears to be the case when we came across an Android mobile lock-screen ransomware, known as “FLocker,” that is capable of locking smart TVs as well.
Cybercrime is a vast ecosystem that is evolving its business models and technologies at a rapid pace, and it’s been predicted that data breaches could cost businesses $2.1 trillion globally by 2019.
In order to stay ahead and protect their data and businesses, security teams must adapt fast in the escalating arms race.
A Kosovo citizen has pleaded guilty to hacking computers to expose U.S. service members’ personal data on behalf of the Islamic State. At a plea hearing Wednesday in federal court in Alexandria, Virginia, 20-year-old Ardit Ferizi told a judge that he still doesn’t know why he committed the crime. He pleaded guilty to providing material support to the Islamic State and unauthorized access to a computer.
Right now two of the biggest threats that organizations are facing are Ransomware and Business Email Compromise (BEC). Ransomware has been in the news a lot. And it’s understandable why: when cybercrime activity impacts hospitals and their ability to give care, that’s an example of cybercrime having real-world consequences. But as we outline in our landing page on BEC, it would be a mistake for organizations to ignore that threat.
Many challenges unite state cybersecurity leaders, starting with recruiting and maintaining the talent needed to protect IT assets from known and emerging threats. At the NASCIO Midyear Conference last month, we talked to chief information security officers (CISOs), who outlined their key workforce challenges and their strategies for taking them on.
Senators Mark R. Warner (D-VA) and Cory Gardner (R-CO) announced Tuesday the creation of the ‘Senate Cybersecurity Caucus.’ The caucus will provide a platform for senators and their staff to stay informed on major policy issues and developments in cybersecurity. “Cybersecurity is one of the most serious economic and national security challenges we face as a nation, and both the private and the public sector need to be better prepared to address the escalating threat from cyberattacks.”
Getting the world’s two largest powers to work together on a subject as touchy as cybersecurity was always bound to be difficult. How difficult? Nine months after Barack Obama and Xi Jinping announced a surprise series of cyber agreements at the Rose Garden press conference, it appears China and the U.S. are still figuring out how to talk about it.
U.S. healthcare organizations have been in the firing line of cyber-attacks for years. Trend Micro research released last October revealed that, over the past decade, it has been the most attacked sector, accounting for over a quarter (26%) of all breaches since 2005. That’s why organizations like the Health Information Trust Alliance (HITRUST) are so important. Its Cyber Threat Exchange (CTX) enables the sharing of actionable threat information (IOCs) to better fortify participant organizations.
Please add your thoughts in the comments below or follow me on Twitter; @ChristopherBudd.