Friday Squid Blogging: Diplomoceras Maximum
Diplomoceras maximum is an ancient squid-like creature. It lived about 68 million years ago, looked kind of like a giant paperclip, and may have had a lifespan of 200 years. As usual, you can also use this squid post to talk about the security stories in the news that I…
Why the power to neutralise the threat of ransomware lies within your network
Ransomware attacks are on the up. Due to low execution costs, high rates of return, as well as a low risk of being caught, ransomware has become the preferred method of attack for those operating illegally within the online space. In fact, research highlights a surge in the number of…
40% of Remote Workers are Vulnerable to Cyber-Attacks
Two in five Remote Worker in the united kingdom are vulnerable to cyber-attacks since they haven’t obtained advice about ways to steer clear of COVID-19 scams or needed some movie telephone safety instruction. The analysis also found that more than half (54 percent ) of Remote Workers are operating with…
New code for tech companies to give customers more choice and control over their data
The united kingdom government has unveiled plans to develop a new statutory code for technology firms that are designed to provide customers more control and choice over their data. The Department for Digital, Culture, Media, and Sport (DCMS) stated a committed Digital Markets Unit will operate alongside regulators like Ofcom…
You too can be a security intelligence expert, with these free tools from Recorded Future
Many thanks to the great folks at Recorded Future, who have sponsored my writing for the past week. If 2020 taught the security industry anything, it is this: There has never been a better time to be a cybercriminal. From extortion ransomware to cyberespionage campaigns, adversaries are capitalizing on uncertainty,…
Cybersecurity Predictions for 2021: Robot Overlords No, Connected Car Hacks Yes
While 2021 will present evolving threats and new challenges, it will also offer new tools and technologies that will we hope shift the balance towards the defense.
ASICs at the Edge
At Cloudflare we pride ourselves in our global network that spans more than 200 cities in over 100 countries. To handle all the traffic passing through our network, there are multiple technologies at play. So let’s have a look at one of the cornerstones that makes all of this work……
Undermining Democracy
Last Thursday, Rudy Giuliani, a Trump campaign lawyer, alleged a widespread voting conspiracy involving Venezuela, Cuba, and China. Another lawyer, Sidney Powell, argued that Mr. Trump won in a landslide, the entire election in swing states should be overturned and the legislatures should make sure that the electors are selected…
A Byzantine failure in the real world
An analysis of the Cloudflare API availability incident on 2020-11-02When we review design documents at Cloudflare, we are always on the lookout for Single Points of Failure (SPOFs). Eliminating these is a necessary step in architecting a system you can be confident in. Ironically, when you’re designing a system with…
Fertility patients’ sensitive personal information stolen during ransomware attack
Fertility clinics across the United States have been struck by a ransomware attack that has not only encrypted networks, but also stolen patients' sensitive personal and medical information. Read more in my article on the Hot for Security blog.
Canon confirms data theft in August’s ransomware attack
Months after the attack Canon publically confirmed that the cyberattack in August was caused by ransomware, and that data was stolen from servers by hackers during this attack. The attack was first reported by BleepingComputer when they found that there was a suspicious outage on cannons cloud photo storage service,…
Fertility patients’ data stolen in ransomware attack
One of the largest group of fertility clinics in the United States, U.S. Fertility, has recently been hit by a ransomware attack, with patient and company data stolen. U.S. Fertility said that hackers “acquired a limited number of files” while they were in the system. The hackers remained in the…
Personal data of 16 million COVID-19 patients in Brazil leaked online
The personal and health data of over 16 million Brazilian COVID-19 patients has been exposed after a hospital employee foolishly uploaded a spreadsheet or names, passwords, and access keys to sensetive government systems on GitHub. Two government databases, E-SUS-VE and Sivep-Gripe, used to store patients COVID-19 data, were among the…
Digitally Signed Bandook Malware Once Again Targets Multiple Sectors
A cyberespionage group with suspected ties to the Kazakh and Lebanese governments has unleashed a new wave of attacks against a multitude of industries with a retooled version of a 13-year-old backdoor Trojan. Check Point Research called out hackers affiliated with a group named Dark Caracal in a new report published yesterday for their…
Beyond the firewall: Intrusion Detection Systems
Firewalls are so 2000s. With your "office" now scattered over homes everywhere, you need a new way of protecting your office from network threats and that's IDSs.