Successful cyber attacks attract additional cyber attackers
Recent cyber attacks against city governments have provided their attackers with revenue from scams, data breaches, and data held ransom. They also draw the attention of other cyber thieves. If you were a smart cyber thief, you’d be wanting to find victims that meet a ... Read More
Time for a PCI-DSS Assessment? Maybe?
If you accept charge cards, you are subject to the rules laid out by the PCI Security Standards Council. You could be in medical, retail or online. The field does not matter. What matters is you accept charge cards and/or debit cards. The PCI Security ... Read More
May 5, 2024Mark Anthony Germanos
Cyber attack closes bank's doors
Reuters reported that the Bank of Valetta, which accounts for almost half of Malta’s banking transactions, had to shut down all of its operations last month after hackers broke into its systems and shifted funds overseas.
"Prime Minister Joseph Muscat told parliament the cyber attack involved the creation of ... Read More
May 5, 2024Mark Anthony Germanos
Cyber thieves sending fake security alerts
Con artists are targeting thousands of people with tech support scams that pose as security alerts from Norton Security, researchers at Symantec have found. The phony alerts pop up in the browser and urge the victim to run a quick scan of their computer. If ... Read More
May 4, 2024Mark Anthony Germanos
Real-estate phishing scam took $123,000 from a home buyer
A man in Portland, Oregon lost $123,000 after falling victim to a phishing real-estate scam, according to Michele Lerner at The Washington Post. In December, Aaron Cole and his family were about to buy a new house through WFG National Title Insurance ... Read More
May 3, 2024Mark Anthony Germanos
Malwarebytes releases State of Malware report
Growth in attacks designed to obfuscate access and purpose should put organizations on alert as cybercriminals gain control over endpoints to do just about anything they want.
The most dangerous cyberattack is the one you don’t know about.
That’s exactly what cybercriminals are focusing on, according to Malwarebytes’ ... Read More
May 3, 2024Mark Anthony Germanos
Scammers use Google Translate to create spoof login pages
A clever use of Google Translate fools victims into believing spoofed authentication requests are being handled by Google itself.
Compromising credentials are the number one staple in any cybercriminal’s book of activities, according to the Verizon Data Breach Investigation’s Report. A new phishing scam ... Read More
May 2, 2024Mark Anthony Germanos
Scammers using hijacked GoDaddy domains to launch large-scale spam campaigns
GoDaddy took steps in January, 2019 to address the authentication flaw exploited by the attackers, according to Brian Krebs. Krebs first reported on the authentication weakness on January 22nd, when he outlined two massive spam campaigns during 2018 that were very successful ... Read More
May 2, 2024Mark Anthony Germanos
European-level GPDR becomes California law in CCPA
Governor Brown signed into law California Assembly Bill 375, the California Consumer Privacy Act of 2018 (CCPA) in June, 2018. The law is new in the United States. It applies European-level compliance obligations akin to the now infamous General Data Protection Regulation (GDPR). The CCPA law takes effect on ... Read More
May 1, 2024Mark Anthony Germanos
Social engineering on Wikipedia
Social engineering scammers are selectively editing Wikipedia pages. These lend credibility to tech support scams, according to Rob VandenBrink at the SANS Internet Storm Center. The Wikipedia page for the SpyEye banking Trojan was changed in mid-December to include a typo-ridden paragraph which claims that only three ... Read More
May 1, 2024Mark Anthony Germanos