11 Sep 2025
By Mary

InfoSec News Nuggets 9/11/2025

KillSec Ransomware is Attacking Healthcare Institutions in Brazil The KillSec Ransomware group has threatened to leak sensitive data unless negotiations are initiated promptly. According to threat intelligence reporting by Resecurity, the root cause of the incident – data exfiltration from insecure AWS S3 bucket. Considering the investigation performed by cybersecurity experts, the window of exposure can be estimated at ‘several months.’ Probably, this is the first notable supply chain incident affecting the healthcare industry in Brazil.…
Read More
05 Jun 2025
By Mary

InfoSec News Nuggets 6/5/2025

Meta and Yandex are de-anonymizing Android users’ web browsing identifiers Tracking code that Meta and Russia-based Yandex embed into millions of websites is de-anonymizing visitors by abusing legitimate Internet protocols, causing Chrome and other browsers to surreptitiously send unique identifiers to native apps installed on a device, researchers have discovered. Google says it's investigating the abuse, which allows Meta and Yandex to convert ephemeral web identifiers into persistent mobile app user identities.   Crocodilus malware adds…
Read More
21 Jan 2025
By Mary

InfoSec News Nuggets 1/21/2025

US issues final rule barring Chinese, Russian connected car tech The Commerce Department on Tuesday announced a new rule that will bar certain Chinese and Russian connected car technology from being imported to the United States. Software and hardware built into Vehicle Connectivity Systems (VCS) — such as telematics control units and cellular, satellite and Wi-fi functions — which are manufactured in China and Russia will be banned, along with any connected cars containing them.  Separately Russian…
Read More
20 Sep 2024
By Mary

InfoSec News Nuggets 9/20/2024

Walmart customers scammed via fake shopping lists, threatened with arrest Shopping online or attempting to get in touch with a store is a little bit like walking on a minefield: you might get lucky or take a wrong step and get scammed. Case in point, a malicious ad campaign is abusing Walmart Lists, a kind of virtual shopping list customers can share with family and friends, by embedding rogue customer service phone numbers with the appearance…
Read More
19 Mar 2024
By Mary

InfoSec News Nuggets 3/19/2024

NHS Dumfries and Galloway Warns of “Significant” Data Theft An NHS Scotland trust has warned of disrupted services and possible data compromise after being breached by threat actors. NHS Dumfries and Galloway issued a brief statement on Friday that it “has been the target of a focused and ongoing cyber-attack.” The healthcare provider is still investigating the incident, in tandem with the National Cyber Security Centre (NCSC), Police Scotland and the Scottish Government. Healthcare is…
Read More
29 Feb 2024
By Mary

InfoSec News Nuggets 2/29/2024

Registrars can now block all domains that resemble brand names Registrars can now block people from registering tens of thousands of domain names that look like, are spelling variations of, or otherwise infringe on brand names. GlobalBlock, a solution already in use by leading registrars like GoDaddy Corporate Domains, 101domain, and MarkMonitor lets businesses pay a subscription fee to reserve a part of the domain space, as a means to protect their trademark. But, is there more to…
Read More
16 Feb 2024
By Mary

InfoSec News Nuggets 2/16/2024

  European Court of Human Rights declares backdoored encryption is illegal The European Court of Human Rights (ECHR) has ruled that laws requiring crippled encryption and extensive data retention violate the European Convention on Human Rights – a decision that may derail European data surveillance legislation known as Chat Control. The Court issued a decision on Tuesday stating that "the contested legislation providing for the retention of all internet communications of all users, the security services’ direct…
Read More
22 Dec 2023
By Mary

InfoSec News Nuggets 12/22/2023

Four in five Apache Struts 2 downloads are for versions featuring critical flaw  Security vendor Sonatype believes developers are failing to address the critical remote code execution (RCE) vulnerability in the Apache Struts 2 framework, based on recent downloads of the code. The vulnerability, tracked as CVE-2023-50164, is rated 9.8 out of 10 in terms of CVSS severity. It is a logic bug in the framework's file upload feature: if an application uses Struts 2 to allow users…
Read More
21 Dec 2023
By Mary

InfoSec News Nuggets 12/21/2023

UK Supreme Court rules AI is not an inventor  The UK Supreme Court ruled that AI cannot get patents, declaring it cannot be named as an inventor of new products because the law considers only humans or companies to be creators. The court unanimously denied a petition from Stephen Thaler, founder of the AI system DABUS, to name his AI as an inventor. The UK’s decision aligns with a similar decision made against Thaler in the…
Read More
15 Aug 2023
By Mary

InfoSec News Nuggets 08/15/2023

Ford Says Wi-Fi Vulnerability Not a Safety Risk to Vehicles  American car maker Ford says that a vulnerability in the Wi-Fi driver of the SYNC 3 infotainment system on certain Ford and Lincoln vehicles does not pose a safety risk. Tracked as CVE-2023-29468, the bug impacts the Texas Instruments-supplied Wi-Fi driver used in the infotainment system of at least a dozen vehicles. The issue is described as a buffer overflow that could lead to remote…
Read More
24 May 2023
By Mary

InfoSec News Nuggets 05/24/2023

FTC Accuses Defunct Edtech Company Edmodo of Violating Kids' Privacy The Federal Trade Commission announced a proposed $6 million settlement with education technology company Edmodo Tuesday for collecting data from kids without parental consent and using it to sell ads in violation of the Children’s Online Privacy Protection Act (COPPA). The case is unusual for several reasons, including the fact that the Edmodo went out of business while the government was still investigating. The FTC is on a tear in recent months, upending the…
Read More
19 Apr 2023
By Mary

InfoSec News Nuggets 04/19/2023

This ATM Scam Is Masquerading As an Act of Kindness  Taking money out of an ATM can be a fairly nerve-wracking thing to do depending on where you are and what time of the day or night it is. Having someone show you any kind of altruistic behavior, like letting you know you dropped some cash on the floor, can lower your defenses and give you hope that the universe is not out to get you. Except…
Read More
30 Aug 2022
By Mary

InfoSec News Nuggets 08/30/2022

Justice Department in early stages of filing an antitrust lawsuit against Apple, says report The U.S. Department of Justice is in the early stages of drafting an antitrust lawsuit against Apple, according to sources cited by Politico in a report released just ahead of the weekend. While the new report suggested a potential suit could arrive by the end of the year, it also stressed that a final decision about if or when to sue Apple had…
Read More
25 Apr 2022
By Mary

InfoSec News Nuggets 04/25/2022

Russian hackers are seeking alternative money-laundering options The Russian cybercrime community, one of the most active and prolific in the world, is turning to alternative money-laundering methods due to sanctions on Russia and law enforcement actions against dark web markets. Although the options are few, cybecriminals are discussing viable solutions to cash out or safe keep stolen funds and cryptocurrency, analysts at Flashpoint observed in conversations from threat actors. First came the bank sanctions and the blocking of SWIFT payments, a result of…
Read More
16 Feb 2022
By Mary

InfoSec News Nuggets 02/16/2022

Outrage over Telenor Myanmar sale grows as more ties between military and new owner revealed Activists in Myanmar have released troves of data linking the country's military dictatorship to a company that will be purchasing a majority stake in Telenor Myanmar -- a subsidiary of Norwegian telecom giant Telenor that controls the personal data of 18 million Myanmar subscribers. Telenor, which is owned and controlled by the Norwegian government, has faced significant backlash for weeks after it announced a decision to sell its…
Read More
03 Dec 2021
By Mary

InfoSec News Nuggets 12/03/2021

Really stupid “smart contract” bug let hackers steal $31 million in digital coin Blockchain startup MonoX Finance said on Wednesday that a hacker stole $31 million by exploiting a bug in software the service uses to draft smart contracts. The company uses a decentralized finance protocol known as MonoX that lets users trade digital currency tokens without some of the requirements of traditional exchanges. “Project owners can list their tokens without the burden of capital…
Read More
25 Oct 2021
By Mary

InfoSec News Nuggets 10/25/2021

Groove ransomware calls on all extortion gangs to attack US interests The Groove ransomware gang is calling on other extortion groups to attack US interests after law enforcement took down REvil's infrastructure last week. Over the weekend, BleepingComputer reported that the REvil ransomware operation shut down again after an unknown third party hijacked their dark web domains. As part of this shutdown, a known REvil operator claimed that the unknown party was "looking" for them by modifying…
Read More
17 Sep 2021
By Mary

InfoSec News Nuggets 09/17/2021

Anonymous leaks gigabytes of data from alt-right web host Epik Hacktivist collective Anonymous claims to have obtained gigabytes of data from Epik, which provides domain name, hosting, and DNS services for a variety of clients. These include the Texas GOP, Gab, Parler, and 8chan, among other right-wing sites. The stolen data has been released as a torrent. The hacktivist collective says that the data set, which is over 180GB in size, contains a "decade's worth of…
Read More
15 Sep 2021
By Mary

InfoSec News Nuggets 09/15/2021

BlackMatter ransomware hits medical technology giant Olympus Olympus, a leading medical technology company, is investigating a "potential cybersecurity incident" that impacted some of its EMEA (Europe, Middle East, Africa) IT systems last week. Olympus has more than 31,000 employees worldwide and over 100 years of history developing for the medical, life sciences, and industrial equipment industries. The company's camera, audio recorder, and binocular divisions have been transferred to OM Digital Solutions, which has been selling…
Read More
25 Jan 2021
By Mary

InfoSec News Nuggets 01/25/2021

After big hack of U.S. government, Biden enlists 'world class' cybersecurity team President Joe Biden is hiring a group of national security veterans with deep cyber expertise, drawing praise from former defense officials and investigators as the U.S. government works to recover from one of the biggest hacks of its agencies attributed to Russian spies. Disclosed in December, the hack struck eight federal agencies and numerous companies, including software provider SolarWinds Corp. U.S. intelligence agencies…
Read More
27 Oct 2020
By Mary

InfoSec News Nuggets 10/27/2020

FTC Launches New Fraud Reporting Tool for US Consumers The US Federal Trade Commission (FTC) has launched a new cyber-fraud reporting platform, where consumers can easily report fraud, scams or bad business practices. As fraud has surged during the pandemic, the consumer protection agency has created ReportFraud.ftc.gov, a user-friendly platform providing a “streamlined experience” for people bombarded with online scams and impostor calls. “Every time you report scams or bad business practices to the FTC, you’re…
Read More
31 Mar 2020
By Mary

InfoSec News Nuggets 3/31/2020

Leave the pandemic out of your phishing simulations, Cofense says to industry At least one anti-phishing company says it won’t be testing its customers with coronavirus-themed emails, out of concerns that it’s not socially responsible to play into fears around the current pandemic. Cofense says it has removed all COVID-19-themed spearphishing templates from its repository of attacks, and the Virginia-based company is recommending other organizations join it in a pledge to avoid using the global health crisis as fodder. Like other…
Read More
11 Dec 2019
By Mary

InfoSec News Nuggets 12/11/2019

1 - Bitcoin-hungry hackers broke their own decryption tool, analysts warn Cybersecurity researchers warn that paying Bitcoin $BTC▼2.23% to retrieve files locked by the prolific Ryuk ransomware may still result in data loss. This means that Ryuk‘s latest victims are stuck between a rock and a hard place. If they refuse to send their attackers Bitcoin, they’ll lose access to their data altogether, but if they pay, the hackers will provide them with a decryption tool that doesn’t work. Software…
Read More