The battles in a global cyberwar are visible only through periodic glances in the rearview mirror: Indra, Colonial Pipeline, SolarWinds, WannaCry.
The Messaging, Malware and Mobile Anti-Abuse Working Group (M3AAWG) and The Anti-Phishing Working Group (APWG) have again collaborated to conduct a survey of cyber investigators and anti-abuse service providers to understand how ICANN’s application of the European Union’s General Data Protection Regulation (GDPR) has impacted on the distributed WHOIS service and anti-abuse work. The resulting report, published in June, discusses the effect of the Temporary Specification on anti-abuse actors’ access and usage of domain name registration information, which is central for various types of investigations.
It is far better to concoct passwords made up of three random words than to use more complex variations involving streams of letters, numbers and symbols, UK government experts have said.
The Biden administration would like you to get a vaccine and wear a mask. Oh, and one more thing: It has just proclaimed that it’s time for government employees and contractors to get off public Wi-Fi, where they can pick up another kind of virus.
Secretive gangs are hacking the computers of governments, firms, even hospitals, and demanding huge sums. But if we pay these ransoms, are we creating a ticking time bomb?
As a member of the secretive Senate Intelligence Committee, Sen. Angus King has reason to worry about hackers. At a briefing by security staff this year, he said he got some advice on how to help keep his cellphone secure.
Microsoft’s Digital Crimes Unit secured a court order last week to take down malicious infrastructure used by cybercriminals, targeting the use of “homoglyph” – or imposter – domains. Homoglyph domains are increasingly being used in a variety of attacks by cybercriminals. As a result, a judge in the Eastern District of Virginia issued a court order on 16 July requiring domain registrars to disable the malicious domains that have been used to impersonate Microsoft customers and commit fraud.
DNS Abuse –malware, botnets, phishing, pharming, and spam – is a growing and ongoing global threat to every country’s national and economic security. In the last months, the DNS Abuse Institute has worked to bring together – both in public forums and individual meetings – leading experts to help guide the creation of a roadmap for combating abuse.
The average Digital Shadows client isn’t a small company, but the company reports in their latest Impersonating Domains Report an average client has 1,100 impersonating domains and subdomains detected on average per year.
Just days after President Biden demanded that President Vladimir V. Putin of Russia shut down ransomware groups attacking American targets, the most aggressive of the groups suddenly went off-line early Tuesday.
The mystery is who made it happen.