Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days.
Below you’ll find a quick recap of topics followed by links to news articles and/or our blog posts providing additional insight. Be sure to check back each Friday for highlights of the goings-on each week!
New GnatSpy Mobile Malware Family Discovered
Trend Micro researchers came across a new mobile malware family which they have called GnatSpy. The malware is believed to be a new variant of VAMP, indicating that the threat actors behind APT-C-23 are still active and continuously improving their product. It is unknown if these files were distributed to users.
Cyberespionage Campaign Sphinx Goes Mobile with AnubisSpy
Trend Micro construes AnubisSpy to be linked to the cyberespionage campaign Sphinx based on shared file structures and command-and-control server as well as targets. It’s also possible that while AnubisSpy’s operators may also be Sphinx’s, they could be running separate but similar campaigns.
Five Individuals Were Arrested for Spreading CTB-Locker and Cerber Ransomware
Romanian authorities have arrested five people on accusations of spreading email spam that infected users with the CTB-Locker and Cerber ransomware families. The five arrested suspects are not ransomware authors, but mere distributors.
North Korea Is Being Held Accountable for WannaCry
The US government has pinned WannaCry on North Korea. And while cybersecurity researchers have suspected North Korea’s involvement from the start, the Trump administration intends to show the world that no one can launch reckless cyberattacks with impunity.
Multi-Stage Cyberattacks Net North Korea Millions in Virtual Currencies
A series of recent cyberattacks has netted North Korean hackers millions of dollars in virtual currencies like bitcoin, with more attacks expected as international sanctions drive the country to seek new sources of cash, researchers say.
Firefox Users Think Mr. Robot Ad Is Malware Extension
Mozilla Firefox users began noticing an extension called “Looking Glass” had been added to their browsers without an explanation – sparking fears that it was some kind of malware. It later came to light that the plug-in was simply an ad, part of a promotion for the USA Network hacker show Mr. Robot.
8 in 10 Healthcare Organizations Lack Chief Cybersecurity Officer
According to a new Black Book Market Research survey, eight in 10 organizations lack a C-suite leader to manage cybersecurity enterprise-wide, and just 11% plan to get a cybersecurity chief in 2018. Only 15% of respondents reported said they currently have a chief information security officer.
Cybercriminals Tour the World on the Cheap
Ever wonder how hackers travel? In the cybercriminal underground, fraudulent online transactions involving travel documents, airline and hotel loyalty accounts, and other travel-related services have become valued commodities the past several years.
Bombshell hacks were revealed one after another in 2017, from an Equifax breach that compromised almost half the country to global ransom campaigns that cost companies millions of dollars. The cyberattacks highlighted the alarming vulnerability of our personal information.
Amazon Cyberattack Student Was Given a Suspended Sentence
A student who admitted involvement in a string of high-profile cyberattacks – attacking multinational firms – has been given a suspended sentence. He was 17 when he supplied denial of service software which floods computer networks with huge volumes of data to make them slow down or crash.
Please add your thoughts in the comments below or follow me on Twitter; @JonLClay.