TweakTown NewsRefine News by Category:
North Korea is not surprisingly denying any potential involvement in the Sony Pictures Entertainment cyberattack last week that brought the company to a grinding halt. The country previously showed displeasure at SPE's movie The Interview, which will be released later this month, featuring a plot by two Americans to assassinate North Korean leader Kim Jong-Un.
"The hostile forces are relating everything to the DPRK. I kindly advise you to just wait and see," a North Korean spokesperson recently said. I do not know anything about this."
Some cybersecurity experts don't believe North Korea has significant infrastructure to launch cyberattacks - but could have called upon China or Russia - to launch the attack on its behalf. Some organized cybercriminal groups are willing to offer their services to the highest bidder, especially if it involves targeting high-profile attacks targeting companies in the United States.
Members of the "Lizard Squad" apparently have successfully targeted Microsoft Xbox Live, making inaccessible to gamers on Monday evening. It would appear a distributed denial of service (DDoS) attack successfully knocked Xbox Live offline, with the group promising additional attacks leading up to Christmas.
There were a number of tweets and Facebook status updates from upset gamers reporting they've had trouble logging onto Xbox Live.
The Lizard Squad previously targeted the Sony PlayStation Network and several game from Electronics Arts in the past.
Former NSA contractor Edward Snowden hopes to see the United Nations create new laws that will be able to better protect privacy and human rights among its citizens. Snowden is the co-winner of the Right Livelihood Award, the "alternative Nobel," and continues to speak out against organized government surveillance that targets regular Internet users.
"I hope despite all we have accomplished in the last year, we all recognize that this is only the beginning," Snowden said.
Snowden also understands how other whistleblowers, journalists, editors and Internet activists have put themselves on the line while speaking out against government surveillance. "These are things that are unlikely to change soon. But they're worth it. All the prices we paid, all the sacrifices we made, I believe we'd do it again. There is so much more to do... and together we will achieve it."
A criminal group has been discovered conducting cyberespionage so they are able to game the stock market, according to cybersecurity company FireEye. Specifically, the group has targeted at least 100 firms, focusing on biotech and healthcare companies, and it's unknown if they made any trades based on the stolen information.
The group had access to US Securities and Exchange Commission (SEC) filings, legal documents, merger activity information, medical research results, and other sensitive information they could utilize before news became public. It would appear only those with access to insider data, such as company executives, were targeted in the sophisticated and coordinated attacks.
It's a difficult time for companies trying to keep data secure from outside threat, as cybercriminals are becoming increasingly savvy in their methods to compromise secure data.
Four different movies from Sony Pictures Entertainment, including Annie, Fury, Mr. Turner and Still Alice, have leaked online via peer-to-peer file sharing networks. The company suffered a major cyberattack last week, which is now being investigated by law enforcement, Sony confirmed. The digital copies are watermarked and were likely caused by the SPE network intrusion, sources have confirmed.
"The theft of Sony Pictures Entertainment content is a criminal matter, and we are working closely with law enforcement to address it," a Sony spokeswoman recently said.
Fury made its appearance on file sharing networks on Nov. 27, and has been downloaded at least 888,000 times. This is the largest leak since July, after the Expendables 3 movie was released online almost one month before release in theaters.
Launching social engineering attacks, typically using phishing tactics, will remain a success for cybercriminals - and companies struggle to teach their employees how to detect and avoid these attacks. Phishing emails often trick employees to turn over usernames and passwords, or install some type of file with malware.
"Phishing relies on human mistakes, not technology, so the number one way to combat this particularly effective form of social engineering is to raise awareness enterprise-wide," said Joe Caruso, CEO and CTO of Global Digital Forensics. "Time is your enemy after a cyber breach or incident, so every second counts. The faster the problem is identified and eradicated, the less costly it will be in the long run for the entire organization."
As more people embrace mobile devices, such as smartphones and tablets, cybercriminals are adjusting their attack strategies. More employees are using their personal devices for work, and criminals have the opportunity to steal personal and corporate information.
Sony Pictures Entertainment has tasked cybersecurity firm Mandiant with helping it clean up after a vicious cyberattack that knocked its computer networks offline last week. The "Guardians of Peace" claimed responsibility for the attack, saying they stole terabytes of data from SPE, with SPE's IT team unable to defend against the attack.
The SPE email system is expected to be restored by end of business tomorrow, while Sony executives remain relatively quiet about the incident.
It is a lucrative time to be in cybersecurity, as companies are turning to private sector companies for additional consultations - as cyberattacks are on the rise, with criminals able to steal internal data, disrupt daily work activities, and compromise customers.
Forget China and Russia - Sony Pictures Entertainment is investigating a major cyberattack that could have originated from North Korea. The attack crippled SPE's email and computer systems since Monday, interrupting employee operations throughout the short holiday week. Several movies being promoted by SPE were also impacted, as Twitter feeds were disrupted by the cyberattack.
The "Guardians of Peace" group claimed responsibility for the attack, and said it has a large amount of internal Sony data that it has taken. GOP is reportedly preparing a "volume of the data" to the Internet in the immediate future.
SPE is the studio behind "The Interview," a geopolitical satire that features James Franco and Seth Rogen as a talk show host and producer turned American operatives tasked with killing Kim Jong Un.
The use of credit cards with magnetic chips in the United States is slowly but surely being replaced by new chip and PIN cards that are more secure. However, retailers need to make sure their employees are properly trained in how to accept payments with chip and PIN cards, especially with some retailers replacing their own magnetic cards with the newer security.
Target, which suffered a massive breach at the end of 2013, is rolling out support for chip and PIN cards - and other retailers that suffered data breaches are expected to follow suit. But customers are finding checkout to be a tedious process when cashiers are unsure how to handle this new this payment process, however, the growing pains should prove to be worth it.
The use of chip and PIN technology will likely begin to transition from large retailers down to smaller businesses, as they discover its added security benefits. "It's about the peace of mind for the consumer, right?" said Shane Cowger, Arvest Bank sales manager, in a statement. "More consumers feel comfortable coming into your store, hopefully the more money they're going to spend in return."
There have been more than 6 million email accounts and credentials leaked over the past three months, as several major data breaches gave criminals a treasure trove of information. There are typically just 150,000 accounts stolen per month, according to Heimdal Security, so seeing more than 6 million is being seen as an epidemic.
"As a security company we only pick up a smaller part of what hackers actually have access to, and you have to remember that the 6 million accounts have only been discovered over the last three months," said Morten Kjaersgaard, Heimdal Security CEO. "The actual number could be 20 times as high or more."
The entire year has been a painful lesson in how evolved cybercriminals have become in their craft, as experts believe data breaches - and more compromised information - is likely to happen multiple times in the future.