Tag Archives: attack

Roles and Responsibilities for Defending the Nation from Cyber Attack

Chairman McCain, Ranking Member Reed, and members of the committee, thank you for the invitation to provide remarks on the FBI’s role in defending the nation against cyber threats.

As the committee is well aware, the frequency and impact of cyber attacks on our nation’s private sector and government networks have increased dramatically in the past decade and are expected to continue to grow. We continue to see an increase in the scale and scope of reporting on malicious cyber activity that can be measured by the amount of corporate data stolen or deleted, personally identifiable information compromised, or remediation costs incurred by U.S. victims. Within the FBI, we are focused on the most dangerous malicious cyber activity: high-level intrusions by state-sponsored hackers and global organized crime syndicates, as well as other technically sophisticated attacks.

Cyber threats are not only increasing in scope and scale, they are also becoming increasingly difficult to

Read more at: https://www.fbi.gov/news/testimony/cyber-roles-and-responsibilities

Ransomware most likely form of cyber attack on industry in near future

In a speech on 20 October at the annual Pensions and Lifetime Savings Association conference, Bell reflected that a move against a third-party administrator (TPA) was the most viable way to get money from schemes.

Usually a ransomware attack involves an individual or group sending an email to a targeted organisation or company.

This email is then opened by a member of that organisation which paralyses key functions of that firm’s internal systems.

Once a ransom has been paid to the criminals they might restore the paralysed system.

Bell explained how an attack on a TPA might work in practice.

“I think the first type of attack could be a ransomware used on an administrator to block services. These criminals are clever and set ransoms at a level which the organisation can pay and also be recovered from the insurers,” he said.  

Bell’s favourite example of a

Read more at: https://www.professionalpensions.com/professional-pensions/news/3019519/ransomware-most-likely-form-of-cyber-attack-on-industry-in-near-future

New guide can help firms combat cyber crime as stores hit by attack



Online advice: Alison WhitneyOnline advice: Alison Whitney

Online advice: Alison Whitney

By Hayden Smith

October 11 2017

Cyber security chiefs have drawn up a new guide to help small businesses shield themselves from online attacks.

Firms are urged to follow the advice to guard against threats that can cost time and money.

It comes after all-island retail giant Musgrave – which owns Mace and Centra convenience stores, as well as SuperValu supermarkets – confirmed it had been the subject of a cybercrime attack on its network and stores.

The company said it was investigating the matter and contacting the authorities – though there was no evidence any data had been stolen.

The tips – compiled by the National Cyber Security Centre (NCSC) – follow

Read more at: http://www.belfasttelegraph.co.uk/business/northern-ireland/new-guide-can-help-firms-combat-cyber-crime-as-stores-hit-by-attack-36214387.html

New guide can help firms combat cyber crime as stores hit by attack …



Online advice: Alison WhitneyOnline advice: Alison Whitney

Online advice: Alison Whitney

By Hayden Smith

October 11 2017

Cyber security chiefs have drawn up a new guide to help small businesses shield themselves from online attacks.

Firms are urged to follow the advice to guard against threats that can cost time and money.

It comes after all-island retail giant Musgrave – which owns Mace and Centra convenience stores, as well as SuperValu supermarkets – confirmed it had been the subject of a cybercrime attack on its network and stores.

The company said it was investigating the matter and contacting the authorities – though there was no evidence any data had been stolen.

The tips – compiled by the National Cyber Security Centre (NCSC) – follow

Read more at: http://www.belfasttelegraph.co.uk/business/northern-ireland/new-guide-can-help-firms-combat-cyber-crime-as-stores-hit-by-attack-36214387.html

Forgotten Office 365 accounts targeted by stealthy attack campaign

Video: Why does Locky ransomware keep coming back from the dead?

Crooks are targeting admin and systems accounts — often automated and ignored, not protected by two-factor authentication and secured with poor passwords — to gain access to corporate Office 365 email accounts

Read more at: http://www.zdnet.com/article/forgotten-office-365-accounts-targeted-by-stealthy-attack-campaign/

Forgotten Office 365 accounts targeted by stealthy attack campaign …

Video: Why does Locky ransomware keep coming back from the dead?

Crooks are targeting admin and systems accounts — often automated and ignored, not protected by two-factor authentication and secured with poor passwords — to gain access to corporate Office 365 email accounts

Read more at: http://www.zdnet.com/article/forgotten-office-365-accounts-targeted-by-stealthy-attack-campaign/

More Than Half Of Businesses Have Been Cyber Attack Victims

Would you recognize a cyber attack if it happened at your company?

One company became a victim when a cyber criminal infected it with a ransomware virus, taking its servers hostage and holding them for ransom. Another was attacked by an organized gang of cyber criminals that planned a complex social engineering scheme to steal customer credit card information by impersonating a third-party vendor and installing malware.

cyber attack
Nearly half of business owners have been victims of cyberattacks. (PRNewsfoto/Nationwide)

Such attacks are becoming more common and can potentially cripple a company’s work and reputation — forcing it to pay hundreds to thousands of dollars. More than 20 percent of cyber attack victims spent at least $50,000 and took longer than six months to recover, according to Nationwide’s third annual survey of business owners. But

Read more at: https://businessfacilities.com/2017/10/more-than-half-of-businesses-have-been-cyber-attack-victims/

‘Don’t regret it, report it’: Mums and dads under attack from cyber criminals

The number of cyber attacks targeting mum and dads as well as businesses is booming, with Australians falling for online scams, email phishing, identity theft and credit card fraud in growing numbers.

And the federal Minister Assisting the Prime Minister for Cyber Security, Dan Tehan, has a simple message for Australians during Stay Safe Online week: “Password1 does not cut it”, with 81 per cent of hack attacks a result of stolen or weak passwords.

More BusinessDay Videos

What the good guys are up against: a roundup of popular attack vectors

Defenders face creative adversaries who are constantly evolving their attack arsenal. To help the good guys know what they’re up against, here are some of the attack vectors that have been frequently used in recent months. Some of these vectors – like fileless malware attacks and ransomware – are likely well-known to security professionals. But this doesn’t make them any less dangerous. Attackers are continuing to use them since they’ve proven effective in campaigns.

Memory-resident malware

This malware loads its own program into permanent memory. Memory-resident malware is also known as an ephemeral infection. Actors are increasingly coupling fileless intrusions with memory-resident malware as a way to evade traditional detection capabilities. The decision not to write to disk carries inherent risk of losing access to machines that have been rebooted. But some advanced threat actors have leveraged the constant network connectivity of most corporate networks to maintain persistence through covert communication channels

Read more at: https://www.csoonline.com/article/3230133/malware/what-the-good-guys-are-up-against-a-roundup-of-popular-attack-vectors.html

One in four firms have been victim of cyber attack, survey warns



A study of 205 companies found 48% of businesses have no cyber-security policy in placeA study of 205 companies found 48% of businesses have no cyber-security policy in place

A study of 205 companies found 48% of businesses have no cyber-security policy in place

October 9 2017

More than a quarter of businesses have been hit by cyber attacks over the past two years, according to a new survey.

A study of 205 companies also found 48% of businesses have no cyber-security policy in place. Another 27% are either in need of tightened security or are totally unsecured.

The Magnet Networks national

Read more at: http://www.belfasttelegraph.co.uk/news/republic-of-ireland/one-in-four-firms-have-been-victim-of-cyber-attack-survey-warns-36209440.html