Derek B. Johnson

January 16, 2021

FIN11 e-crime group shifted to CL0P ransomware and big game hunting

FIN11 has increasingly factored CL0P ransomware into its operations, and its clear they also put a substantial amount of effort into each follow-up compromise.

The post FIN11 e-crime group shifted to CL0P ransomware and big game hunting appeared first on SC Media.

January 14, 2021

Early-stage cybersecurity investment flowing, despite pandemic

While most industries saw a significant dip in seed and Series A investments last year, cybersecurity investment remained resilient.

The post Early-stage cybersecurity investment flowing, despite pandemic appeared first on SC Media.

January 13, 2021

JumpCloud land $100 million in funding, as secure remote access market continues surge

Over the past two decades, businesses have piled a patchwork of different products and services – multi-factor authentication, single sign-on, identity governance and administration policies and others – on top of their directory. That introduces risk and complexity, says Jumpcloud CEO Rajat Bhargava.

The post JumpCloud land $100 million in funding, as secure remote access market continues surge appeared first on SC Media.

January 11, 2021

DarkSide decryptor unlocks systems without ransom payment – for now

The decryptor works for all current DarkSide infections, but that will likely change soon as the group reacts and adapts to the disclosure.

The post DarkSide decryptor unlocks systems without ransom payment – for now appeared first on SC Media.

January 8, 2021

Malware variant becomes world’s most popular, thanks to ransomware surge

Ransomware actors are laundering hundreds of millions of dollars through pseudo-legitimate cryptocurrency exchanges, while early-stage malware that is often used to facilitate their attacks have become the most popular forms of malware in the world.

The post Malware variant becomes world’s most popular, thanks to ransomware surge appeared first on SC Media.

January 8, 2021

CISA discovers token abuse around SolarWinds hack, calls for full rebuild of affected networks

The agency has found evidence of authentication token abuse in networks infected with corrupted versions of Orion software and say restoring integrity will require a full network rebuild in certain cases.

The post CISA discovers token abuse around SolarWinds hack, calls for full rebuild of affected networks appeared first on SC Media.

January 5, 2021

After widespread hospital attacks, targeting of health care industry continues to rise

In the two months following a highly publicized series of ransomware attacks against UHS last year, cyber attacks of all stripes against healthcare facilities worldwide shot up 45%.

The post After widespread hospital attacks, targeting of health care industry continues to rise appeared first on SC Media.

January 4, 2021

SolarWinds, top executives hit with class action lawsuit over Orion software breach

Stockholders who purchased company shares in 2020 are suing the IT management software company for materially misleading investors about their security practices.

The post SolarWinds, top executives hit with class action lawsuit over Orion software breach appeared first on SC Media.

January 4, 2021

Microsoft doesn’t treat its source code like a trade secret. Is that smart?

In the course of investigating the impacts of the SolarWinds breach, Microsoft security specialists discovered “unusual activity” within a number of internal accounts, including one that was used to view the company’s internal source code.

The post Microsoft doesn’t treat its source code like a trade secret. Is that smart? appeared first on SC Media.