Skip to main content

Our Senior Threat Research Analyst, @FredFunk, is back from holidays and has a fresh batch of 2020 threat news for you. 

 

Ransomware

FTCODE Now Info-Stealing

Stealing data before encrypting it is now a very common criminal practice. This can be done automatically by malware or it can be done by hackers (such as in the new BitPyLock attacks) who have specifically targeted a network.

FTCODE know joins other infections such as Trickbot in having both data stealing and encrypting components:

“FTCODE, a PowerShell-based ransomware that targets Italian-language users, has added new capabilities, including the ability to swipe saved web browser and email client credentials from victims.”

In all of these cases the data is stolen first and the order of events is important here. If the data was to be encrypted before the data stealing components of the attacks were deployed, then the data stolen would be largely useless to the attackers running these malware campaigns.

Las Vegas Hit by Ransomware

Las Vegas has joined the large list of US cities hit by “high profile cyber-attacks” in recent times. US state and City governance have often been the victims of data theft and encryption, usually carried out by criminal groups such as the Maze gang but exact details of the attack scare at this time. The proliferation of new ransomware (such as Ako) is only part of the problem as once hackers have a good foothold on a network they have an endless amount of options to hurt their victims. Solid malware prevention steps are advised to stop this happening.

More: Infosecurity Magazine

 

Political

“Guardian: Saudi Prince’s Account Used to Hack Jeff Bezos Via Whatsapp”

Incredible story involving the Saudi Crown Prince, Amazon CEO Jeff Bezos & his mistress and shady Israeli & Italian mobile spying companies. Espionage between countries and industry giants is nothing new but the involvement (knowing or otherwise) of a countries leader in an attack is unheard of.

More: Engadget

 

General News

Ubisoft takes DDoS-for-hire website to court over attacks on video game servers

Hacker leaks passwords for more than 500,000 servers, routers, and IoT devices | ZDNet

 

Be the first to reply!

Reply