Cybercrime & Digital Threats

More than 13,000 Internet Small Computer Systems Interface (iSCSI) clusters were found to be unsecured and accessible over the public internet due to their owners’ failing to password-protect them.

Researchers discovered hundreds of compromised CMS sites delivering malicious payloads such as Shade ransomware and phishing pages to users.

Personal health information of over 350,000 consumers were potentially compromised after nine employees of the Oregon Department of Human Services (DHS) fell victim to a phishing attack.

Parisian authorities recently arrested five men for hacking gas station pumps and stealing 120,000 liters of petrol and diesel. This was possible because the stations did not change the default PIN code of their gas pumps.

A business email compromise (BEC) scheme took more than $100 million from Facebook and Google. Legitimate-looking invoices, contracts and more fooled the two tech companies and they wired millions to the fraudsters over a period of years.

In a survey commissioned by Trend Micro, nearly 50 percent of 1,125 chief information security officer (CISO) respondents shared that skills shortage is a cause for concern for their organizations.

Brute-force attacks against user accounts in cloud services prove that multifactor authentication is only one part of an effective multilayered security implementation.

Trend Micro‘s Managed Detection and Response (MDR) and Incident Response teams investigated two separate Ryuk attacks with seemingly little in common with each other.

We look at the most pervasive information stealers, ransomware, and cryptocurrency-mining malware in the Americas in 2018 and how they highlight the significance of proactive threat detection and incident response capabilities.