EncroChat shut itself down on June 13 when it discovered that the police had penetrated its network. The company then sent a warning to all users telling them to throw away their phones. (Source: Europol)

European Police Hack Encrypted Communication System

Doug Olenick • July 2, 2020

European police gained access to messages sent via the encrypted cellular service EncroChat, leading to the arrest of hundreds of alleged organized crime members across the Netherlands, France, Norway, Sweden and the U.K., the EU's law enforcement intelligence agency Europol reports.

Cybercrime

The Remote Workforce: Cloud Security Challenges

Latest

Cybercrime

Operators Behind Valak Malware Expand Malicious Campaign

Ishita Chigilli Palli • July 3, 2020

The operators behind the Valak malware strain have expanded their malicious campaigns to other parts of the world, targeting financial, manufacturing, healthcare and insurance firms, according to Cisco Talos. Attackers are now using existing email threads and ZIP files to spread the information stealer.

Application Security

Apache Guacamole Vulnerable to Reverse RDP Vulnerabilities

Akshaya Asokan • July 3, 2020

Apache Guacamole, an open-source application that allows for remote connections to devices, contains several vulnerabilities that could allow attackers to steal data or run remote code execution, Check Point Research found. These bugs come at a time when many employees are still working remotely.

Critical Infrastructure Security

Detecting Network Security Incidents

Anna Delaney • July 3, 2020

Rossella Mattioli, a network and information security expert at ENISA, the European Union Agency for Cybersecurity, discusses a new report offering insights on detecting network security incidents.

Account Takeover

Digital IDs: A Progress Report

Nick Holland • July 3, 2020

The latest edition of the ISMG Security Report discusses global progress on adopting standard digital identifiers. Plus, a former cybercriminal discusses emerging fraud trends, and an update on the evolution of e-signatures.

Account Takeover

POS Malware Using DNS to Steal Payment Card Data

Ishita Chigilli Palli • July 2, 2020

Fraudsters are using a revamped version of the Alina Trojan to target Windows-based POS devices to steal payment card data, according to Century Link's Black Lotus Labs. The malware operators are using unsecured DNS protocols to exfiltrate the data.

Fraud Management & Cybercrime

Ex-Fraudster Brett Johnson: 'There Are Going to Be a Lot of Victims'

Tom Field • July 2, 2020

Tens of millions of Americans have lost jobs because of COVID-19. As a result, former 'most wanted" fraudster Brett Johnson predicts a surge in fraud, saying bluntly: "There are going to be a lot of victims."

Identity & Access Management

Building Trust in Digital Identities

Anna Delaney • July 1, 2020

Implementing trusted digital IDs will create benefits for end users as well as service providers, says Nick Mothershaw, chair and executive director at the Open Identity Exchange. But widespread international adoption of such IDs will take time to achieve, he acknowledges.

Cybercrime

FakeSpy Android Malware Disguised as Postal Service Messages

Akshaya Asokan • July 1, 2020

The operators behind an updated version of the FakeSpy malware are targeting Android devices using SMS phishing messages to spread the info stealer, according to Cybereason. The messages are designed to appear to come from postal and delivery services.

Cyberwarfare / Nation-State Attacks

FCC: Huawei, ZTE Are 'National Security Threats'

Ishita Chigilli Palli • July 1, 2020

The U.S. Federal Communications Commission has officially designated China's Huawei Technologies and ZTE Corp. as "national security threats," barring American telecommunications firms from using certain federal funds to buy their equipment, such as for building 5G networks.

COVID-19

Guarding Against COVID-19 Fraud Schemes

Marianne Kolbasuk McGee • July 1, 2020

With the COVID-19 pandemic continuing to surge, organizations must remain vigilant in their defense against coronavirus-themed phishing, business email compromise and other fraud campaigns, says attorney Robert Egan, who offers risk mitigation insights.

COVID-19

Brute-Force Attacks Targeting RDP on the Rise

Akshaya Asokan • June 30, 2020

Since the start of the COVID-19 pandemic, the number of brute-force attacks targeting RDP connections has steadily increased, spiking to 100,000 incidents per day in April and May, according to the security firm ESET. These attacks pave the way for launching ransomware attacks and planting cryptominers.

Fraud Management & Cybercrime

Ransomware Targets Mac Users

Doug Olenick • June 30, 2020

A ransomware strain targeting Mac users is spreading via a fake installer for Little Snitch - a host-based application firewall for macOS - according to the security firm Malwarebytes, which says the malware is poorly designed.