i was going to cover Twitter and their handling of misinformation, but seeing that the election is several days away now, I changed my mind. On the topic of misinformation, social media should not be your source for news because of the fact it is so open, and that can lead to lots of questionable things like people phishing you by posting through direct messaging systems enticing you to click because you’re interested in more information on a particular topic. It does go with the security landscape, but I’ve decided not to cover the article in such closeness to the day of election. Just be safe out there when searching for information.
This week in security news does cover something that I recently blogged about among many other things that might catch your attention. It should be no surprise that trick bot is up to no good, although they recently had to rebuild. Its now going after hospitals. Trend Micro for home networks under the free housecall brand was discussed as part of a tech show on the mix on Thursdays. I believe this is a good thing for people and can be looked at. I didn’t read this, but did you know that there are 76 percent of having at least one security problem? Google is still in it because they had to remove more apps with adware and infected to boot. We covered the Finland patent debacle Read my October 26th blog post on the matter and you can even link to a story from there, or look at the entire news from Trend Micro to find a story at the end of this section.
There may be other articles that I did not highlight in the list, but thats all right by me. Want to learn all of what Trend Micro highlighted in their roundup? This Week in Security News: Trend Micro Researcher Uncover Two Espionage Backdoors Associated with Operation Earth Kitsune and Trickbot and Ransomware
Attackers Plan Big Hit on U.S. Hospitals is the article for this week. Discuss with us what you want and is of interest to you. Want to submit for a podcast? Record your file, and use the sendspace drop box facility to send files. Mp3, m4a, wav, and other audio formats are accepted.
Krebs on Security writes a blog post about a joint release by the FBI and others about a problem that we need to be aware of.
On Monday, Oct. 26, KrebsOnSecurity began following up on a tip from a reliable source that an aggressive Russian cybercriminal gang known for deploying
ransomware was preparing to disrupt information technology systems at hundreds of hospitals, clinics and medical care facilities across the United States.
Today, officials from the FBI and the U.S. Department of Homeland Security hastily assembled a conference call with healthcare industry executives warning
about an “imminent cybercrime threat to U.S. hospitals and healthcare providers.”The agencies on the conference call, which included the U.S. Department of Health and Human Services (HHS), warned participants about “credible information
of an increased and imminent cybercrime threat to US hospitals and healthcare providers.”The agencies said they were sharing the information “to provide warning to healthcare providers to ensure that they take timely and reasonable precautions
to protect their networks from these threats.”
There is an advisory out on it as well and is linked in the article FBI, DHS, HHS Warn of Imminent, Credible Ransomware Threat Against U.S. Hospitals and this may also have been covered in this week in security news linked above.
Speaking of Phishing, NCSAM can’t be complete without a write up of an article I found about URL tracking systems like google add words. Its a good thing that the Jared Rimer Network does not use google add words and cents and any of these types of things. How URL Tracking Systems are Abused for Phishing is written by a new contributer to me from Phishlabs, Mr. Sean Bell.
Speaking of U.S. governmental stuff, I mise well put all of these articles together in here because of the fact security stuff was involved, and I’ll let you all form your own opinion on these.
- >
- US sanctions Russian government institution in connection with Trisis malware
- US Treasury sanctions 5 Iranian organizations for alleged election influence operations
- Why the US was so fast to blame Iran for voter intimidation emails in Florida
and
The third article had interest here because I covered another article either in passing or by mention about that type of thing. Normally attribution is not this quick, but this was different to see in that third article.
From the U.S. Government email list, I’ll pass along what has been sent. Note that I’ve not fully read these, I’m only passing them along as they may be of interest to you.
- Alert (AA20-301A) North Korean Advanced Persistent Threat Focus: Kimsuky (linked from the Krebs article above)
- Malware Analysis Report (AR20-303A) MAR-10310246-2.v1 – PowerShell Script: ComRAT
Malware Analysis Report (AR20-303B) MAR-10310246-1.v1 – ZEBROCY Backdoor
How do Hackers get your passwords? NCSAM: how hackers get passwords links to an article that I wrote that links to Lastpass and a good article at that.
Have something I missed? Want to have your say? Get in touch and send those articles. Quite a lot here for this time, and I can’t wait to continue to post more throughout the rest of the year. Stay safe!
Discover more from The Technology blog and podcast
Subscribe to get the latest posts sent to your email.