InfoSec News Nuggets 05/09/2022

FBI says business email compromise is a $43 billion scam The Federal Bureau of Investigation (FBI) said today that the amount of money lost to business email compromise (BEC) scams continues to grow each year, with a 65% increase in the identified global exposed losses between July 2019 and December 2021. From June 2016 until July 2019, IC3 received victim complaints regarding 241,206 domestic and international incidents, with a total exposed dollar loss of $43,312,749,946.…
Read More

InfoSec News Nuggets 04/11/2022

Move over Apple Pay - Hitachi has created a fingerprint payment system A new biometric finger vein-based biometric authentication system could one day replace your smartphone as the easiest way to pay for goods and services. Nikkei Asia reports that Hitachi has developed just such a system for payments using only your finger: Hitachi has developed a finger vein-based biometrics authentication system to enable the user to check in to a hotel or make payments at…
Read More

InfoSec News Nuggets 03/09/2022

Rompetrol gas station network hit by Hive ransomware Romania's Rompetrol gas station network has been hit by a ransomware attack. A subsidiary of KMG International, Rompetrol announced today that it is dealing with a "complex cyberattack" that forced it to shut down its websites and the Fill&Go service at gas stations. Today, Romania's petroleum provider Rompetrol has announced that it is battling a "complex cyberattack." BleepingComputer has learned that Hive ransomware gang is behind this attack, and…
Read More

InfoSec News Nuggets 03/02/2022

New Chinese hacking tool found, spurring U.S. warning to allies Security researchers with U.S. cybersecurity firm Symantec said they have discovered a “highly sophisticated” Chinese hacking tool that has been able to escape public attention for more than a decade. The discovery was shared with the U.S. government in recent months, who have shared the information with foreign partners, said a U.S. official. Symantec, a division of chipmaker Broadcom (AVGO.O), published its research about the tool,…
Read More

InfoSec News Nuggets 02/22/2022

Conti ransomware gang takes over TrickBot malware operation After four years of activity and numerous takedown attempts, the death knell of TrickBot has sounded as its top members move under new management, the Conti ransomware syndicate, who plan to replace it with the stealthier BazarBackdoor malware. TrickBot is a Windows malware platform that uses multiple modules for various malicious activities, including information stealing, password stealing, infiltrating Windows domains, initial access to networks, and malware delivery.…
Read More