UPS data breach gives “junk mail” a whole new meaning. Cars cruise away with driver data.

UPS data breach gives “junk mail” a whole new meaning. Cars cruise away with driver data.

The THT ransomware group makes a comeback. UPS data breach gives “junk mail” a whole new meaning. Cars cruise away with driver data. Mondelez suffers third-party data breach.   Read More 

The CyberWire 

Related Posts

Stuxnet: The malware that cost a billion dollars to develop?

Stuxnet: The malware that cost a billion dollars to develop?

A report from the Netherlands claims that a Dutch man played a key role in the notorious Stuxnet worm attack against an Iranian nuclear facility, which then accidentally escaped into the wider world.   Read More 

Graham Cluley 

FBI Recovers 7,000 Decryption Keys For Helping Victims Recover Files

FBI Recovers 7,000 Decryption Keys For Helping Victims Recover Files

The FBI has recovered over 7,000 decryption keys, enabling victims of ransomware attacks to reclaim their data and get back online.

This development is part of a broader effort by the FBI to disrupt cybercriminal activities and support victims in the wake of cyber intrusions.

A Comprehensive Cyber Strategy

Bryan Vorndran, the assistant director of the FBI’s Cyber Division, outlined the agency’s multi-faceted approach to combating cyber threats.

The FBI’s strategy includes investigating and attributing cyber activities, gathering and operationalizing domestic intelligence, and engaging with victims to provide rapid and comprehensive threat response.

“We want to punish cyber criminals and take them off the playing field,” Vorndran stated.

The FBI leverages various authorities, including Title 18, Rule 41, and the Foreign Intelligence Surveillance Act (FISA), to conduct its operations both domestically and internationally.

With ANYRUN You can Analyze any URL, Files & Email for Malicious Activity : Start your Analysis

Disrupting Ransomware Operations

One of the FBI’s key focuses has been disrupting ransomware operations, particularly those from Russian-speaking countries.

These cybercriminals operate as organized crime syndicates, employing a ransomware-as-a-service model.

This model includes four key services: infrastructure, communications, malware, and currency.

Vorndran highlighted the FBI’s recent success in Operation Endgame, which targeted four groups offering malware as a service.

This operation, in collaboration with international partners, dismantled the infrastructure for four major malware variants responsible for hundreds of millions of dollars in damages.

The LockBit Ransomware Case

Many of the FBI’s efforts have been directed at the LockBit ransomware, a notorious ransomware-as-a-service operation led by Russian coder Dimitri Khoroshev.

Since its inception in 2019, LockBit has been responsible for over 1,800 attacks in the U.S. and more than 2,400 globally, causing billions of dollars in damages.

In a major technical operation, the FBI and international partners disrupted LockBit’s infrastructure and imposed sanctions on its affiliates.

This operation seized critical infrastructure and led to the recovery of over 7,000 decryption keys.

These keys are now being used to help victims reclaim their data. The FBI’s efforts extend beyond disrupting cybercriminal operations.

The agency is committed to supporting victims and enhancing overall cybersecurity practices.

Vorndran emphasized the importance of well-established cybersecurity practices, including multi-factor authentication, effective logging, and maintaining current backups.

The FBI also encourages organizations to develop comprehensive plans for business continuity, crisis management, disaster recovery, and computer intrusion incident response.

These plans should be exercised at all levels of the organization to ensure synergy among decision-makers and refine decision-making processes.

International Collaboration and Future Threats

The FBI’s success in combating cyber threats is largely due to its collaboration with international partners.

Vorndran highlighted the importance of partnerships with domestic and global entities in the public and private sectors.

“We are stronger together,” he stated, urging all stakeholders to work collectively to combat cyber threats.

Looking ahead, the FBI remains focused on current threats from nation-states like China, Russia, Iran, and North Korea.

The agency is also prioritizing the security of emerging technologies, such as artificial intelligence and machine learning, and ensuring the integrity of the 2024 election.

The recovery of 7,000 decryption keys marks a significant milestone in the FBI’s ongoing efforts to combat cybercrime and support victims.

As cyber threats continue to evolve, the FBI’s comprehensive strategy and collaborative approach will be crucial in safeguarding organizations and individuals from future attacks.

Looking for Full Data Breach Protection? Try Cynet’s All-in-One Cybersecurity Platform for MSPs: Try Free Demo 

The post FBI Recovers 7,000 Decryption Keys For Helping Victims Recover Files appeared first on Cyber Security News.

 Read More 

 

KmsdBot Malware Gets an Upgrade: Now Targets IoT Devices with Enhanced Capabilities
KmsdBot Malware Gets an Upgrade: Now Targets IoT Devices with Enhanced Capabilities

KmsdBot Malware Gets an Upgrade: Now Targets IoT Devices with Enhanced Capabilities

An updated version of a botnet malware called KmsdBot is now targeting Internet of Things (IoT) devices, simultaneously branching out its capabilities and the attack surface.
"The binary now includes support for Telnet scanning and support for more CPU architectures," Akamai security researcher Larry W. Cashdollar said in an analysis published this month.
<!–adsense–>
The latest iteration,   Read More 

The Hacker News | #1 Trusted Cybersecurity News Site