Say WOW

Suborbital space tourism finally arrives | FCC prepares to run public C-band auction | The big four in the U.S. launch industry — United Launch Alliance, SpaceX, Blue Origin and Northrop Grumman — hope to be one of two providers that will receive five-year contracts later this year to launch national security payloads starting in 2022. | China’s launch rate stays high | The International Space Station is the largest ever crewed object in space.

 
Watering Hole Attacks Push ScanBox Keylogger
Researchers uncover a watering hole attack likely carried out by APT TA423, which attempts to plant the ScanBox JavaScript-based reconnaissance tool. A China-based threat actor has ramped up efforts to distribute the ScanBox reconnaissance framework to victims that include domestic Australian organizations and offshore energy firms in the South China Sea. The bait used by the advanced threat group (APT) is targeted messages that supposedly link back to Australian news websites. The cyber-espionage campaigns are believed to have launched...

Read More

Tentacles of ‘0ktapus’ Threat Group Victimize 130...
Over 130 companies tangled in sprawling phishing campaign that spoofed a multi-factor authentication system. Targeted attacks on Twilio and Cloudflare employees are tied to a massive phishing campaign that resulted in 9,931 accounts at over 130 organizations being compromised. The campaigns are tied to focused abuse of identity and access management firm Okta, which gained the threat actors the 0ktapus moniker, by researchers. “The primary goal of the threat actors was to obtain Okta identity credentials and multi-factor authentication...

Read More

 
Ransomware Attacks are on the Rise
Lockbit is by far this summer’s most prolific ransomware group, trailed by two offshoots of the Conti group. After a recent dip, ransomware attacks are back on the rise. According to data released by NCC Group, the resurgence is being led by old ransomware-as-a-service (RaaS) groups. With data gathered by “actively monitoring the leak sites used by each ransomware group and scraping victim details as they are released,” researchers have determined that Lockbit was by far the most prolific...

Read More

Cybercriminals Are Selling Access to Chinese Surveillance...
Tens of thousands of cameras have failed to patch a critical, 11-month-old CVE, leaving thousands of organizations exposed. New research indicates that over 80,000 Hikvision surveillance cameras in the world today are vulnerable to an 11 month-old command injection flaw. Hikvision – short for Hangzhou Hikvision Digital Technology – is a Chinese state-owned manufacturer of video surveillance equipment. Their customers span over 100 countries (including the United States, despite the FCC labeling Hikvision “an unacceptable risk to U.S. national...

Read More

The Most Watched Shows on Netflix This...
PCMag editors select and review products independently. If you buy through affiliate links, we may earn commissions, which help support our testing. Learn more. Wondering if your taste in binging matches the rest of the country’s? Here’s a look at the most-watched shows on Netflix and beyond, according to Reelgood.com. Updated November 20, 2020 social share Copied Error! Copy Link https://www.pcmag.com/news/the-most-watched-shows-on-netflix-this-week

Read More

 
Are You Ransomware Aware?
The most common threat in the cybersecurity world often sounds like a plot from a blockbuster movie. The clock is ticking… You have only a few hours… Can you solve the mystery before you have to pay the ransom? According to Secureworks’ Director of Intelligence, Mike McLellan, year after year, threat actors around the world keep going back to malware tools which hold data hostage. Ransomware is a tried-and-true tactic that has been around for more than 30 years—a...

Read More

Don’t Wait for Them to Find You:...
Disinformation is a known tool for nation-state threat actors. Learn what it means for threat intelligence practitioners. Tuesday, August 25, 2020By: Secureworks When the first page of the calendar turned to 2020, none of us knew what would come in a few months’ time. In fact, Secureworks’ Senior Security Researcher Rafe Pilling thought the most seismic event he would see was the assassination of Iranian General Qasem Soleimani in January. As Secureworks’ thematic lead for research focused on Iran...

Read More

Preparing for Post-Intrusion Ransomware
Since 2015, Secureworks® Counter Threat Unit™ (CTU) researchers have observed a massive increase in the number and impact of post-intrusion ransomware incidents. In these attacks, a threat actor gains access to a compromised network, moves laterally to other systems and networks, locates the critical business assets, and then chooses a time (which could be days or months after initial access) to deploy ransomware that encrypts the victim’s files. Around the end of 2019, criminals realized they could gain additional...

Read More

 
Details on BRONZE VINEWOOD, Implicated in Targeting...
The likely China-based targeted threat group has been active since at least 2017, using a combination of custom and native tools to steal data from its targets Wednesday, June 24, 2020By: Counter Threat Unit Research Team On June 4, 2020, Google’s Threat Analysis Group reported active targeting of U.S. election campaigns by the Chinese BRONZE VINEWOOD (also known as APT31 and ZIRCONIUM) and Iranian COBALT ILLUSION (also known as APT35) threat groups. A Microsoft security researcher subsequently confirmed a...

Read More

What to Stream This Weekend
The content pile is vast, and you’ve got the whole weekend to decide how you want to slice it. We’re in the midst of ever-intensifying streaming wars, and there are too many shows and movies to choose from, spread across too many video-streaming services. So we’re making it easier for you. Each week, we highlight the streaming content we’re excited to watch or think you should binge. Fire up your media-streaming device of choice, and start watching. Advertisement Sweet Tooth: Season 2 (Netflix)...

Read More

Save $50 on Beats Powerbeats Pro True...
If you’ve been eyeing the pricey Beats Powerbeats Pro wireless earphones, this is a great time to go for it. They normally cost $249.95, but you can score a pair at Amazon right now for $199.95, or 20 percent off, with free shipping(Opens in a new window). The Powerbeats Pro feature “adjustable, secure-fit earhooks” that should ensure they stay in place during workouts. They’re sweat- and water-resistant and promise up to 9 hours of listening time, plus their case...

Read More