Passwords for 900 VPN servers posted on dark web | Maze ransomware hits Canon | Bitfinex offers $400M reward for stolen bitcoin
August 6, 2020
SmartBrief on Cybersecurity
Security and risk management news that matters to the C-SuiteSIGN UP ⋅   SHARE
Top Story
Data from 900 Pulse Secure VPN enterprise servers -- including IP addresses, usernames and passwords, and administrator account information -- have been posted on the dark web. A security researcher noted that the breached servers were all running a firmware version that had a known vulnerability.
Full Story: Tom's Guide (8/5),  ZDNet (8/4) 
LinkedIn Twitter Facebook Email
Play IT pinball for a shot at prizes
Get the high score. Save your IT planet. Challenge your friends. Enter for a chance to win some sweet space loot!
Data Breaches
Maze ransomware hits Canon
(Robyn Beck/Getty Images)
Tech firm Canon has been hit by Maze ransomware, with 10 terabytes of data reportedly stolen and more than 20 company-owned domains affected. Unlike the malware used in the recent attack on Garmin, the Maze ransomware exfiltrates data and encrypts files, and the hackers typically begin posting the data publicly if ransom demands are not met.
Full Story: The Verge (8/6),  BleepingComputer (8/5) 
LinkedIn Twitter Facebook Email
Cryptocurrency trading platform Bitfinex is offering up to approximately $400 million to anyone who can return up to 119,756 bitcoin -- now worth $1.335 billion -- that were stolen in 2016. The company is also offering 5% of the bitcoin recovered to anyone who puts them in contact with the hackers who stole the bitcoin.
Full Story: SiliconAngle (8/4) 
LinkedIn Twitter Facebook Email
Election Security
The State Department is offering up to $10 million for information on persons or organizations working with foreign entities to interfere with US elections through illegal cyberactivities. The initiative covers attacks against election infrastructure, voting machines, US election officials, candidates and campaign staffers.
Full Story: ZDNet (8/5),  Bloomberg (tiered subscription model) (8/5) 
LinkedIn Twitter Facebook Email
SmartBrief Originals
Sponsored content brought to you by SmartBrief
Security Tips and Tools
Five indicators can serve as red flags that a ransomware attack may be imminent, and information security executives should be alert for them, writes Peter Mackenzie. He lists several network scanners and hacking tools whose presence should prompt an investigation, including AngryIP, Advanced Port Scanner and MimiKatz.
Full Story: Sophos News (8/4) 
LinkedIn Twitter Facebook Email
Government Security and Policy
NSA says cellphone tracking creates security risks
The National Security Agency has warned that cellphone location tracking threatens security, and it has advised intelligence and military personnel on safe practices, including turning off apps' location-sharing features. Wearable devices also have the potential to be threats, the agency added, noting that users outside the Department of Defense also might benefit from its guidance.
Full Story: The Wall Street Journal (tiered subscription model) (8/4) 
LinkedIn Twitter Facebook Email
Australia's sweeping 2020 Cyber Security Strategy, issued this week, would boost law enforcement's authority to actively defend critical infrastructure and go after cybercriminals on the dark web. It would also set up networks for sharing information with the private sector.
Full Story: ZDNet (Australia) (8/6) 
LinkedIn Twitter Facebook Email
Sharing SmartBrief on Cybersecurity with your network keeps the quality of content high and these newsletters free.
SmartBrief will donate $10 per new reader to organizations fighting for climate reform, women's rights, global health initiatives and more.
Or copy and share your personalized link:
I am awaiting perpetually and forever a renaissance of wonder
Lawrence Ferlinghetti,
LinkedIn Twitter Facebook Email
SmartBrief publishes more than 200 free industry newsletters - Browse our portfolio
Sign Up  |    Update Profile  |    Advertise with SmartBrief
Unsubscribe  |    Privacy policy
SmartBrief, Inc.®, 555 11th ST NW, Suite 600, Washington, DC 20004