Categories
Cyber attack Cyber news Cyber Security

Suspected Russian hack is much worse than first feared: Here’s what you need to know

The scale of a sophisticated cyberattack on the U.S. government that was unearthed this week is much bigger than first anticipated. 

The Cybersecurity and Infrastructure Security Agency said in a summary Thursday that the threat “poses a grave risk to the federal government.”

It added that “state, local, tribal, and territorial governments as well as critical infrastructure entities and other private sector organizations” are also at risk.

CISA believes the attack began at least as early as March. Since then, multiple government agencies have reportedly been targeted by the hackers, with confirmation from the Energy and Commerce departments so far.

“This threat actor has demonstrated sophistication and complex tradecraft in these intrusions,” CISA said. “Removing the threat actor from compromised environments will be highly complex and challenging.”

Categories
Cyber attack Cyber news Cyber Security

Hackers’ broad attack sets cyber experts worldwide scrambling to defend networks

(Reuters) -Suspected Russian hackers who broke into U.S. government agencies also spied on less high-profile organizations, including groups in Britain, a U.S. internet provider and a county government in Arizona, according to web records and a security source.

More details were revealed on Friday of the cyber espionage campaign that has computer network security teams worldwide scrambling to limit the damage as a senior official in the outgoing administration of U.S. President Donald Trump explicitly acknowledged Russia’s role in the hack for the first time.

Categories
Cyber attack Cyber news Cyber Security

Microsoft to quarantine SolarWinds apps linked to recent hack

After only showing detection alerts, Microsoft moves to block trojanized SolarWinds apps from running, opening the door for some IT issues for some of its customers.

On Sunday, several news outlets reported that hackers linked to the Russian government breached SolarWinds and inserted malware inside updates for Orion, a network monitoring and inventory platform.

Following the company’s official statement, Microsoft was one of the first cybersecurity vendors to confirm the SolarWinds incident. On the same day, the company added detection rules for the Solorigate malware contained within the SolarWinds Orion app.

Categories
Cyber attack Cyber news Cyber Security

Teach Your Employees Well: How to Spot Smishing & Vishing Scams

One of the best ways to keep employees from falling victim to these social-engineering attacks is to teach them the signs.

Categories
Cyber attack Cyber news Cyber Security Phishing

All Con, All the Way Down: Bad Guys Spoof Phishing Link Hover Texts

Click here to see article

Categories
Cyber news Cyber Security

Over one million WordPress sites receive forced update to security plugin after severe vulnerability discovered

Categories
Cyber news Cyber Security

Cisco Warns of Attackers Targeting High Severity Router vulnerability