LockerGoga ransom note. (Source: MalwareHunterTeam)

Hydro Hit by LockerGoga Ransomware via Active Directory

Mathew J. Schwartz • March 20, 2019

Aluminum giant Norsk Hydro has been hit by LockerGoga ransomware, which was apparently distributed to endpoints by hackers using the company's own Active Directory services against it. To help safeguard others, security experts have called on Hydro to release precise details of how it was hit.

Business Continuity Management / Disaster Recovery

RSA President Rohit Ghai on Digital Risk Management

Latest

Cybersecurity

Bot-Driven Credential Stuffing Attacks

Varun Haran • March 20, 2019

The threats from bad bots and the consequences of ignoring them continue to rise, says Patrick Sullivan, global director of security at Akamai.

Breach Response

Gearbest Database Leaks 1.5 Million Customer Records

Scott Ferguson • March 19, 2019

An unprotected database belonging to Chinese e-commerce site Gearbest exposed 1.5 million customer records, including payment information, email addresses and other personal data for customers worldwide, white hat hackers discovered.

Mobility

Redefining the Approach to Mobile Security

Tom Field • March 19, 2019

As the new director of mobile security strategy for Google, Eugene Liderman is focused on redefining the strategy and dispelling old security myths. He outlines the approach in this exclusive interview.

Application Security

NSA Pitches Free Reverse-Engineering Tool Called Ghidra

Mathew J. Schwartz • March 19, 2019

Here's free software built by the National Security Agency called Ghidra that reverse-engineers binary application files - all you have to do is install it on your system. So went the pitch from the NSA's Rob Joyce at this year's "Get Your Free NSA Reverse Engineering Tool" presentation at RSA Conference 2019.

Cybercrime

Inside the Cybercrime Support Network

Tom Field • March 19, 2019

As a former elected official, Kristin Judge saw first-hand the lack of resources for victims of cybercrime. And so she launched the Cybercrime Support Network, which serves small businesses and consumers.

Incident & Breach Response

Destructive Cyberattacks Surge

Mathew J. Schwartz • March 19, 2019

Destructive malware attacks, once rare, have been surging as attackers seek to cover their tracks and complicate life for incident responders, says Rick McElroy, head of security strategy at Carbon Black.

Governance

Capturing the Fingerprints of Attacks

Tom Field • March 19, 2019

It's not enough to detect an attack. To be truly effective, defenders need to capture digital fingerprints and movement through the network. Lastline CEO John DiLullo discusses this level of defense.

Governance

Understanding Your Risk Surface

Tom Field • March 19, 2019

In the expanded, virtual enterprise, security leaders face the challenge of defending an ever more complicated attack surface. How can they best understand and mitigate their risks? Kelly White of RiskRecon shares insights.

Breach Preparedness

The Rise of Integrated Cyber Defense

Tom Field • March 19, 2019

Symantec and scores of partners have launched a new integrated cyber defense initiative aimed at promoting industry collaboration and delivering new business value, Art Gilliland explains.

DevSecOps

Putting Application Threat Intelligence Into Action

Tom Field • March 19, 2019

F5 Networks is a vendor of application security solutions, but its DevSecOps professionals also have the need for actionable threat intelligence, says Preston Hogue, who discusses the advent of new solutions.

Governance

Dark Web Intelligence-Gathering: Why Privacy Matters

Mathew J. Schwartz • March 19, 2019

A funny thing happened on the way to dark web intelligence-gathering: Some organizations began to amass and share a lot of private information, potentially in violation of privacy regulations and industry rules, says Danny Rogers, CEO of Terbium Labs.

Artificial Intelligence & Machine Learning

Building a Robust Security Strategy

Mathew J. Schwartz • March 19, 2019

Organizations may have great cybersecurity intentions, but translating those desires into a robust security reality is often challenging, says Ratinder Ahuja, CEO of ShieldX Networks. That's why he advocates automation to ensure intention equals reality.