14 Jan 2025
By Mary

InfoSec News Nuggets 1/14/2025

Ransomware crew abuses AWS native encryption, sets data-destruct timer for 7 days A new ransomware crew dubbed Codefinger targets AWS S3 buckets and uses the cloud giant's own server-side encryption with customer provided keys (SSE-C) to lock up victims' data before demanding a ransom payment for the symmetric AES-256 keys required to decrypt it. Halcyon threat hunters say they first spotted this criminal gang in December, and in recent weeks observed two such ransomware attacks…
Read More
22 Aug 2024
By Mary

InfoSec News Nuggets 8/22/2024

Post-Quantum Cryptography set to revolutionise digital security Post-Quantum Cryptography (PQC) is poised to redefine the very foundation of digital security by addressing threats posed by advancements in quantum computing. Recently, the National Institute of Standards and Technology (NIST) finalised a principal set of encryption algorithms designed to withstand cyberattacks from quantum computers. This significant step prompts organisations to reconsider their approaches to cybersecurity. According to the Australian Signals Directorate (ASD), which monitors NIST developments to…
Read More
19 Aug 2024
By Mary

InfoSec News Nuggets 8/19/2024

ISP to Supreme Court: We shouldn’t have to disconnect users accused of piracy A large Internet service provider wants the Supreme Court to rule that ISPs shouldn't have to disconnect broadband users who have been accused of piracy. Cable firm Cox Communications, which is trying to overturn a ruling in a copyright infringement lawsuit brought by Sony, petitioned the Supreme Court to take up the case yesterday. Cox said in a press release that a…
Read More
17 Jun 2024
By Mary

InfoSec News Nuggets 6/17/2024

Ascension hacked after employee downloaded malicious file Ascension, one of the largest U.S. healthcare systems, revealed that a May 2024 ransomware attack was caused by an employee who downloaded a malicious file onto a company device. Ascension says this was likely an "honest mistake" as the employee thought they were downloading a legitimate file. The attack impacted the MyChart electronic health records system, phones, and systems used to order tests, procedures, and medications, prompting the…
Read More
15 Aug 2022
By Mary

InfoSec News Nuggets 08/15/2022

Diagnostic Robotics has AI catching health problems before they take you to the ER A stitch in time saves nine, they say — and a blood thinner in time saves a trip to the emergency room for a heart attack, as Diagnostic Robotics hopes to show. The company’s machine learning-powered preventative care aims to predict and avoid dangerous (and costly) medical crises, saving everyone money and hopefully keeping them healthier in general —  and it’s raised $45…
Read More
03 Dec 2020
By Mary

InfoSec News Nuggets 12/03/2020

5G rollout faster than expected; will reach a billion people this year The super-fast technology reached more customers this year than expected and will cover about 60% of the global population by 2026, according to a new report from Ericsson. That makes 5G the fastest deployed mobile network ever, the Swedish networking giant said. By the end of this year, there will be 218 million 5G subscriptions around the world, up from Ericsson’s forecast in…
Read More
02 Dec 2020
By Mary

InfoSec News Nuggets 12/02/2020

Developers can now run macOS apps in an Amazon EC2 instance running on an Intel Mac mini Amazon EC2 Mac instances enable customers to run on-demand macOS workloads in the cloud for the first time, extending the flexibility, scalability, and cost benefits of AWS to all Apple developers. With EC2 Mac instances, developers creating apps for iPhone, iPad, Mac, Apple Watch, Apple TV, and Safari can provision and access macOS environments within minutes, dynamically scale…
Read More