BU-CERT News

From securitymagazine.com

The FBI says that an increasing number of victims are being directed to fraudulent websites via social media platforms and popular online search engines.

According to complaints received by the FBI, an increasing number of victims have not received items they purchased from websites offering low prices on items such as gym equipment, small appliances, tools and furniture. Victims reported they were led to these websites via ads on social media platforms or while searching for specific items on online search engines’ “shopping” pages. Victims purchased items from these websites because prices were consistently lower than those offered by other online retail stores.

Read more…

From tripwire.com

Jen Burns, lead cybersecurity engineer at MITRE, walks us through the MITRE ATT&CK© Framework and discusses some important changes brought by a July 2020 update. She then highlights what the security community can expect to see in a couple of upcoming updates before sharing how individuals can get involved with the MITRE ATT&CKFramework going forward.

Read more…

From zdnet.com

The operators of the Maze ransomware have published today tens of GB of internal data from the networks of enterprise business giants LG and Xerox following two failed extortion attempts.

The hackers leaked 50.2 GB they claim to have stolen from LG’s internal network, and 25.8 GB of Xerox data.

Read more…

From securityboulevard.com

A scientist at Los Alamos National Laboratory recently asked an important question: “When full-fledged quantum computers arrive, will we be ready?” This scientist researches quantum information theory and his opinion piece for Scientific American magazine focused on quantum computing’s applications. But it’s a smart question when considering cybersecurity as well.

Quantum computing will fundamentally increase processing power, which could mean exciting advances in fields ranging from particle physics to machine learning to medical science but also increased data security risks.

Read more…

From newserector.com

Some users of Windows 10 complained that Microsoft robs Chrome data to get them to live on the edge. However, there are those Windows users who are utterly annoyed at how Edge sticks to its daily life and refuses to leave. There is clearly a misreading of one ZDNet reader. I’ve told Microsoft so much of his story. For an exciting ending, I’ll leave the company’s response.

Read more…

From zdnet.com

Earlier this year, a club with around 70,000 members found itself in a pickle: Pay a ransom or risk the personal information of those members being exposed.

In this scenario, the club paid the ransomware. It was decided that the financial hit of paying outstripped the reputational harm to that business. They handed over a handful of bitcoin totalling around $200,000 and the data was returned.

“They felt compelled to protect the data of their members and to do that, felt paying the ransom was the right thing to do,” Emergence Insurance founder and CEO Troy Filipcevic told ZDNet.

Read more…

From itwire.com

A gang of malicious attackers appears to have used the Windows NetWalker ransomware to stage a raid on the infrastructure of Forsee Power, a company that designs and manufactures smart lithium-ion battery systems for electro-mobility markets.

The company says it is able to mitigate climate change with sustainable, zero-emission electromobility.

Read more…