White House Urges Business Leaders to Lower Ransomware Risks
FBI says REvil was behind JBS meat processing attack, FireEye to become Mandiant again, Massachusets ferry service under attack while NY MTA reveals April hack, Norton will mine cryptocurrency, more
Consider signing up for a premium subscription to Metacurity to gain access to our archives and premium content. Thank you.
Anne Neuberger, the cybersecurity adviser at the National Security Council, sent a letter to America’s corporate executives and leaders urging them to take “a small number of highly impactful steps to help you focus and make rapid progress on driving down risk” associated with ransomware.
Among the basic hygiene steps that Neuberger recommends are implementing best practices outlined in President Biden’s recent executive order, concluding sufficient backups, upgrading and patching systems, and more. (Reuters)
In an official statement, the FBI said that the REvil operation, aka Sodinokibi, is behind the ransomware attack targeting JBS, the world's largest meat producer.
REvil, like the DarkSide group, which was behind the Colonial Pipeline ransomware attack, and the Conti Group, which recently took out Ireland’s healthcare system’s IT network, operates out of Russia with the tacit permission of the Russian government. Press Secretary Jen Psaki said that President Biden would be discussing these attacks with Russian President Vladimir Putin at the June 16th Geneva summit. (Lawrence Abrams / Bleeping Computer)
Related: Business Insider, ZDNet Security, The Verge, Bleeping Computer, The Record, BBC News, RTE, Euractiv, ABC.net.au, Business Standard, Reuters: World News, Japan Today, CNN.com, CBSNews.com, Tech Insider, NDTV Gadgets360.com, UPI.com, TechDator, NDTV Gadgets360.com, IT Pro, BBC News, NBC News Top Stories, Bleeping Computer, The Register, FBI, The Record, TechDator, Infosecurity Magazine, Business Insider, NDTV Gadgets360.com, New York Daily News, CBSNews.com, The Hill: Cybersecurity, ABC.net.au, Euractiv, RTE, Japan Today, BBC News - World, Business Standard, Reuters: World News, IT Pro, The Register - Security
Cybersecurity leader FireEye announced that it would sell its products group to private equity company Symphony Technology Group for $1.2 billion but retain assets acquired from Mandiant Inc. in a $1 billion stock-and-cash deal in 2014.
Publicly traded FireEye will become Mandiant Inc. under the deal, as the Mandiant assets not acquired will take over the traded FireEye listed stock. (Duncan Riley / Silicon Angle)
A ransomware attack by a group with alleged ties to China disrupted ferry services in Massachusetts yesterday. At the same time, New York’s Metropolitan Transportation Authority revealed Wednesday that it had been hacked in April in an attack that did not disrupt operations.
The Massachusetts attack disrupted bookings at the Steamship Authority, the largest ferry operator linking passengers and freight from the mainland to Martha’s Vineyard and Nantucket islands. In the New York MTA attack, hackers accessed three of 18 computer systems used by the transit agency. However, according to MTA officials, the breach had no impact on riders, employees, or contractors. (Robert McMillan, Joseph De Avila, and Jacob Bunge / Wall Street Journal)
Related: Security News | Tech Times, CBSNews.com, NY Post, PYMNTS.com, Daily Mail, Wall Street Journal, UPI.com, The Record, Tech Xplore, Information Security Newspaper | Hacking News, Chinanews.net, Big News Network, RT USA, Gizmodo, New York Times, Axios
Antivirus and cybersecurity company NortonLifelock has added a new feature called Norton Crypto, which gives antivirus users the ability to mine Ethereum cryptocurrency directly within its Norton 360 antivirus program to "protect" users from malicious mining software.
Norton Crypto will use the device's graphics card (GPU) to mine for Ethereum, which will then be transferred into a Norton wallet hosted in the cloud. (Lawrence Abrams / Bleeping Computer)