FBI sees surge in online shopping scams, FTC says most reports ever
The FBI has reported a growing number of reports from victims of online shopping fraud.
Garmin paid for WastedLocker ransomware decryption key
It will never stop if hackers monetize the attacks.
Cybersecurity experts consider paying ransom an irresponsible practice. Even if we are sure that other victims of a specific threat regained access to the data after paying the ransom, it may turn out that the hackers have abandoned their project and no longer want to distribute decryption codes. Therefore, even if we have the right antivirus package, we should create backups as often as possible – in companies, this should be the absolute norm. In-home applications, it is also worth ensuring that our copies contain the most up-to-date information possible – the scale of damage caused by ransomware mainly depends on this.
https://www.itproportal.com/news/garmin-paid-for-wastedlocker-ransomware-decryption-key/
Meetup Critical Flaws Allow ‘Group’ Takeover, Payment Theft
Checkmarx researchers found API security issues such as lack of resources and data timing and exposure, several severe vulnerabilities, and several cross-site critical vulnerabilities in the popular Meetup.com service.
https://threatpost.com/critical-meetup-website-flaws-takeover-payment-theft/157934/
New Attack Leverages HTTP/2 for Effective Remote Timing Side-Channel Leaks
The new attack technique is time-based, remote side-channel attack is time-based, and is more productive regardless of network congestion between the enemy and the target server.
https://thehackernews.com/2020/07/http2-timing-side-channel-attacks.html
Canadian MSP discloses data breach, failed ransomware attack
Pivot Technology Solutiona fell victim to a ransomware attack, hackers gained access to undesirable data.
OkCupid Security Flaw Threatens Intimate Dater Details
The disadvantages of the OkCupid application and website are used by the attackers to steal confidential data and send messages from victims’ profiles.
https://threatpost.com/okcupid-security-flaw-threatens-intimate-dater-details/157809/
Billions of Devices Impacted by Secure Boot Bypass
“BootHole” allows cyber attacks to load malware.
https://threatpost.com/billions-of-devices-impacted-secure-boot-bypass/157843/
Cybercrimes Continue to be a Growing Problem for Older Adults
People used computers very rarely in the 1970s and 1980s, and nowadays, people of the same age have social media accounts and surf the internet and use smartphones. Every year in the United States, cybercriminals rob a large number of older people.
Business giant Dussmann Group’s data leaked after ransomware attack
Unencrypted stolen files from the Dussmann Group file of one of the largest multi-service providers in Germany began to be published via the Nefilim ransomware operation.
Most UK organizations experienced increase in cyberattacks due to Covid-19
As you might expect, remote work increased the security risk and exposed many organizations to smaller and more significant losses. The survey revealed that 92 percent of companies had witnessed a sharp increase in the number of cyberattacks over the past few months.