Author: Bev Robb

domino effect is comparable to a ransomware attack

10 Jun Another Ransomware Attack, Cheap and Effective

Fleecing hospitals was only the beginning, now cybercriminals are coming for the universities. The University of Calgary is the latest victim of a ransomware attack —netting  nasty miscreants a ransom payout of $20,000. The University of Calgary is a leading research university. It is ranked one of the top 10 research universities in the country—housing 73 Canada Research Chairs, with more than 80 research institutes and...

Read More
Fort Friday compromised accounts

27 May Fort Friday Security Clips— Reddit, Myspace Compromised Accounts Rising

  Reddit compromised accounts increasing Redditors are currently under a hack attack—it is account takeover time—the clocks ticking. A Reddit official announcement noted an "uptick in account takeovers (ATOs) by malicious (or at best spammy) third parties." Reddit's founding engineer, Christopher Slowe (AKA: KeyserSosa) wrote "Though Reddit itself has not been exploited, even the best security in the world won't work when users...

Read More
Fort Friday Security Clips

20 May Fort Friday Security Clips— Flight 804, TeslaCrypt, Cyber-espionage Malware Discovered

EgyptAir Flight 804: No hard evidence yet Early Thursday morning EgyptAir Flight 804 was cruising normally beneath clear skies on a flight from Paris to Cairo, then suddenly lurched from left to right (issuing no distress signal) and plummeted 38,000 feet—disappearing  into the Mediterranean Sea. Egyptian authorities, some Russian officials and aviation experts say downed flight 804 may have been an act of...

Read More
Fort Friday Security Clips

06 May Fort Friday Security Clips— Fortscale, Locky & DDoS

Fortscale is growing: We recently added three key members to our expanding leadership team. Joining Fortscale are David Somerville as Senior Vice President, Worldwide Sales, Sathvik Krishnamurthy to Fortscale’s Board of Directors, and Patrick Heim to the Fortscale Advisory Board. All three offer deep security and executive experience, and will help guide Fortscale as it enters its next phase of growth. “Fortscale’s...

Read More
Fort Friday Security Clips

29 Apr Fort Friday Security Clips— Hackers Paradise & Rule 41

This week in Hacker's paradise—Motherboard reports 7 Million Minecraft Community "Lifeboat" user accounts was hacked.  Though Lifeboat had been aware of the breach for quite some time, they did not feel it was important enough to alert their user base. Instead, they chose to quietly force a password reset. I have family members that are avid Lifeboat players, and I'm not...

Read More
insider threat security gates

26 Apr Insider Threat Security Gates—Wide Open

Lacking insider threat security? When an employee departs—will she or he have the ability to use prior credentials after termination? Recently, A U.S. federal court in Wisconsin ordered Indian IT provider: Tata Consultancies (TCS), to pay Epic Systems $940 million in damages. Why? Because an employee was using credentials from a previous contracting job to access Epic's Web portal, whereby this portal contained...

Read More
Fort Friday Security Clips

22 Apr Fort Friday Security Clips—Cheap switches & C-suite Whaling

Bank heist that stole SWIFT credentials Reuters reported yesterday Bangladesh's central bank was vulnerable to hackers because it did not have a firewall and used second-hand, $10 switches to network computers (connected to the SWIFT global payment network). Reuters said "after the hack had taken place," the bank was advised to upgrade the $10 switches. Needless to say, security basics should always...

Read More
Fort Friday Security Clips

15 Apr Fort Friday Security Clips—Gov has lowest score for cybersecurity, ISACA LA

U.S. federal, state and local government agencies is riding the caboose in cybersecurity, when compared to 17 major private industries. The new report was released by SecurityScorecard on Thursday, and measured the relative security of government and industries across 10 categories. Security Scorecard’s benchmarking platform grades 10 security categories comprised of thousands of unique data points to determine a category score and then...

Read More
Fort Friday Security Clips

08 Apr Fort Friday Security Clips—the Panama Papers, ransomware with a twist

The Panama Papers is the biggest data leak in history—featuring 11.5 million documents (2.6 Terabytes of data) from Panamanian law firm Mossack Fonseca—released last Sunday by the International Consortium of Investigative Journalists (ICIJ). The law firm has denied any wrongdoing and recently set up a separate website to address allegations in real-time. Global stir Time Magazine states: "Among those caught up in the...

Read More
hacked underground

07 Apr Hacked corporate email accounts dirt cheap in the underground

Want to dig up some dirt on a competitor? There's an underground service available where hackers-for-hire can get that corporate email account hacked (dirt cheap) for $500 USD. In a recently released report, Dell SecureWorks research uncovered a highly popular underground cybercrime forum offering corporate email account hacking services for hire. The report noted that Russian cybercriminals jacked up their work hours to 24/7; offered customers...

Read More