Now Available!
Join Us On LinkedIn
Join the Cybersecurity and Incident Response Group on LinkedInThe Ill-Fated Emergence of the Bitcoin Balance Sheet
This year MicroStrategy relished in a good problem to have – a half a billion dollars of cash in its bank account and not sure what to do with it. The company could have paid its shareholders a hefty dividend, bought back a truckload of its stock, invested in R&D, financed new acquisitions or pursued […]
As bitcoin soars, so do ransomware attacks. Is it time to ‘stop the madness?’ — bobsullivan.net
Which brings me to Bitcoin and other cryptocurrencies. The vast majority of ransomware gangs demand payment via cryptocurrency, which they favor for its anonymity and the way it enables cross-border payments. Since global law enforcement authorities seem powerless to stop the crypto crime gangs, is it time to stop the crypto? Source: As bitcoin soars, so do […]
Law Firms’ Reported Cyberattacks Are ‘Tip Of The Iceberg’
On top of that, there are just too many methods that bad actors can deploy to gain access to a firm’s system or database, said John Reed Stark, a former U.S. Securities and Exchange Commission internet enforcement chief and the president of data breach response and digital compliance firm John Reed Stark Consulting LLC. Just […]
Financial institutions a top target for COVID-era cyberattacks | PropertyCasualty360
In July 2020, Kroll observed a 22% increase in attacks targeting the financial services sector based on its incident response case intakes. Business email compromise (BEC), fraud and ransomware were the top three threats impacting the industry, and Kroll has seen the number of incidents steadily rise amidst the COVID-19 crisis. From a network topography […]
Ransomware Payments can lead to Sanctions and Reporting Obligations for Financial Institutions | The Anticorruption Blog
With cybercrime on the rise, two U.S. Treasury Department components, the Office of Foreign Assets Control (“OFAC”) and the Financial Crimes Enforcement Network (“FinCEN”), issued advisories on one of the most insidious forms of cyberattack – ransomware. via Ransomware Payments can lead to Sanctions and Reporting Obligations for Financial Institutions | The Anticorruption Blog.
Ransomware Victims That Pay Up Could Incur Steep Fines from Uncle Sam — Krebs on Security
Companies victimized by ransomware and firms that facilitate negotiations with ransomware extortionists could face steep fines from the U.S. federal government if the crooks who profit from the attack are already under economic sanctions, the Treasury Department warned today In its advisory (PDF), the Treasury’s Office of Foreign Assets Control (OFAC) said “companies that facilitate […]
Panelists Discuss Their “One Big Thing” for Incident Response Forum Europe 2020
Incident Response Forum Europe 2020 panelists offer their “One Big Thing” to take away from this year’s event.
A Useful Compendium for Yet Another Discovery Fight Over a Forensic Report | LinkedIn
Instead, judges could find that these extraordinarily helpful, handy and beneficial cyber-service offerings arguably serve more of a business purpose than a legal purpose. Hence, a forensic firm’s findings, communications, heat-maps, remedial laundry lists and any other inculpatory communications can become discoverable in legal proceedings. It’s of course all quite maddening. Indeed, when a company […]
Palo Alto Networks Announces Intent to Acquire The Crypsis Group – Palo Alto Networks
Palo Alto Networks (NYSE: PANW), the global cybersecurity leader, announced that it has entered into a definitive agreement to acquire The Crypsis Group, a leading incident response, risk management and digital forensics consulting firm. Under the terms of the agreement, Palo Alto Networks will acquire The Crypsis Group for a total purchase price of $265 million, […]
CCPA Regulations Take Effect, Six Weeks After CCPA Enforcement Begins | Steptoe & Johnson LLP
On Friday, August 14, 2020, California Attorney General Xavier Becerra announced that the regulations implementing the California Consumer Privacy Act (CCPA) have been approved by the California Office of Administrative Law (OAL) and are effective immediately. The attorney general had already begun enforcing the CCPA itself on July 1. But now that the regulations have […]
Smartwatch maker Garmin hit by outages after ransomware attack | Technology | The Guardian
Garmin has been forced to shut down its call centres, website and some other online services after a ransomware attack encrypted the smartwatch maker’s internal network and some production systems. The US company shut down services including the official Garmin website and all customer services, including phone lines, online chat and email. via Smartwatch maker […]
Keeping Data-Breach Reports Confidential After Capital One
When U.S. Magistrate Judge John Anderson ordered[1] Capital One Financial Corp. to turn over a post-breach digital forensics report to the consumer plaintiffs in the multidistrict litigation relating to the bank’s July 29, 2019, data breach,[2] the decision sent shock waves through the community of legal and forensic firms that help companies respond to cyberattacks. […]
How hackers extorted $1.14m from University of California, San Francisco – BBC News
A leading medical-research institution working on a cure for Covid-19 has admitted it paid hackers a $1.14m (£910,000) ransom after a covert negotiation witnessed by BBC News. The Netwalker criminal gang attacked University of California San Francisco (UCSF) on 1 June. via How hackers extorted $1.14m from University of California, San Francisco – BBC News.
Here’s what that Capital One court decision means for corporate cybersecurity
The judge’s ruling essentially functions as a reprimand of the way many incident response firms now interact with their clients, according to Edward McNicholas, co-leader of the privacy and cybersecurity practice at Ropes & Gray. If a security company consistently is selling a client other services while working on retainer, and the differences aren’t clear […]
Human Capital: John Reed Stark Identifies Lurking Cybersecurity Risks | ThinkAdvisor
Listen in as Stark details why the cybersecurity challenges are exacerbated by the COVID-19 work-from-home environment, with ransomware attacks, phishing and business email schemes also on the rise. “There are legions of soldiers waking up every morning with the sole desire to attack U.S. systems and exfiltrate important data,” Stark says. via Human Capital: John […]