Logos Systems

Russian ransomware attacks increased during 2021, joint review finds

Britain, the US and Australia point to growth in ‘sophisticated, high-impact ransomware incidents’ There have been further increases in “sophisticated, high-impact ransomware incidents” coming from Russia and other former Soviet states during 2021, Britain, the US and Australia said in a joint review of cyber-extortion trends.Universities and schools were one of the top sectors targeted in the UK last year, the National Cyber Security Centre (NCSC) said, as well as businesses, charities, law firms plus councils and the NHS. Hackers are increasingly offering services or exploits “for hire”. Continue reading...

Russian ransomware attacks increased during 2021, joint review finds Britain, the US and Australia point to growth in ‘sophisticated, high-impact ransomware incidents’

How the growing Russian ransomware threat is costing companies dear

With KP Snacks the latest cyber-attack victim, firms must learn to defend themselves against a mounting menaceThe January snow lay thick on the Moscow ground, as masked officers of the FSB – Russia’s fearsome security agency – prepared to smash down the doors at one of 25 addresses they would raid that day.Their target was REvil, a shadowy conclave of hackers that claimed to have stolen more than $100m (£74m) a year through “ransomware” attacks, before suddenly disappearing. Continue reading...

How the growing Russian ransomware threat is costing companies dear With KP Snacks the latest cyber-attack victim, firms must learn to defend themselves against a mounting menace

Cyber-attack on UK’s Defence Academy caused ‘significant’ damage

Former senior officer says unsolved hack of MoD training school systems did not succeed but still had costsA cyber-attack on the UK’s Defence Academy caused “significant” damage, a retired high-ranking officer has revealed.Air Marshal Edward Stringer, who left the armed forces in August, told Sky News the attack, which was discovered in March 2021, meant the Defence Academy was forced to rebuild its network. Continue reading...

Cyber-attack on UK’s Defence Academy caused ‘significant’ damage Former senior officer says unsolved hack of MoD training school systems did not succeed but still had costs

Polish opposition says government use of spyware is ‘crisis for democracy’

Opposition leader Donald Tusk calls for inquiry after watchdog says rivals were targeted by Pegasus spywarePolish opposition leader Donald Tusk said on Tuesday reports that the government spied on its opponents represented the country’s biggest “crisis for democracy” since the end of communism.A cybersecurity watchdog last week said the Pegasus spyware had been used to target prominent opposition figures, with Polish media dubbing the scandal a “Polish Watergate”. Continue reading...

Claims Polish government used spyware is ‘crisis for democracy’, says opposition Opposition leader Donald Tusk calls for inquiry after watchdog says government’s rivals were targeted by Pegasus spyware

UN-backed investigator into possible Yemen war crimes targeted by spyware

Analysis of Kamel Jendoubi’s mobile phone reveals he was targeted in August 2019The mobile phone of a UN-backed investigator who was examining possible war crimes in Yemen was targeted with spyware made by Israel’s NSO Group, a new forensic analysis of the device has revealed.Kamel Jendoubi, a Tunisian who served as the chairman of the now defunct Group of Eminent Experts in Yemen (GEE)– a panel mandated by the UN to investigate possible war crimes – was targeted in August 2019, according to an analysis of his mobile phone by experts at Amnesty International and the Citizen Lab at the University of Toronto. Continue reading...

UN-backed investigator into possible Yemen war crimes targeted by spyware Exclusive: Analysis of Kamel Jendoubi’s mobile phone reveals he was targeted in August 2019

How cut-and-pasted programming is putting the internet and society at risk | John Naughton

A vulnerability has been exposed in Minecraft, the bestselling video game of all time – and the security implications outside the world of gaming are vastIn one of those delicious coincidences that warm the cockles of every tech columnist’s heart, in the same week that the entire internet community was scrambling to patch a glaring vulnerability that affects countless millions of web servers across the world, the UK government announced a grand new National Cyber Security Strategy that, even if actually implemented, would have been largely irrelevant to the crisis at hand.Initially, it looked like a prank in the amazingly popular Minecraft game. If someone inserted an apparently meaningless string of characters into a conversation in the game’s chat, it would have the effect of taking over the server on which it was running and download some malware that could then have the capacity to do all kinds of nefarious things. Since Minecraft (now owned by Microsoft) is the best-selling video game of all time (more than 238m copies sold and 140 million monthly active users), this vulnerability was obviously worrying, but hey, it’s only a video game… Continue reading...

How cut-and-pasted programming is putting the internet and society at risk | John Naughton A vulnerability has been exposed in Minecraft, the bestselling video game of all time – and the security implications outside the world of gaming are vast

The new PPI? Claims firms turn their fire on data breaches

People are being told they are entitled to compensation as more companies move into the industryClaims companies and law firms looking for the next bonanza in payouts are targeting people who have been the victim of a data breach, with some telling those affected they could be entitled to thousands of pounds in compensation.A Google search for the term “data breach claim” results in a long list of firms – the vast majority of them no-win, no-fee solicitors – and there are more moving into this space all the time. Meanwhile, adverts for firms are increasingly appearing in Instagram feeds. Continue reading...

The new PPI? Claims firms turn their fire on data breaches People are being told they are entitled to compensation as more companies move into the industry

NSO Group spyware used to hack at least nine US officials’ phones – report

Revelation comes just weeks after the Biden administration placed NSO on a US blacklistThe iPhones of at least nine US state department officials were recently hacked by a government using NSO Group spyware, according to a new report that raised serious questions about the use of Israeli surveillance tools against US government officials around the world.The claims, which was reported by Reuters, comes just weeks after the Biden administration placed NSO on a US blacklist and said the surveillance company acted “contrary to the foreign policy and national security interests of the US”. Continue reading...

NSO Group spyware used to hack at least nine US officials’ phones – report Revelation comes just weeks after the Biden administration placed NSO on a US blacklist

Cabinet Office fined £500,000 over New Year honours list data breach

Regulator says safety of hundreds of individuals was jeopardised after their addresses were posted onlineThe Cabinet Office has been fined £500,000 by the UK’s data watchdog after the postal addresses of the 2020 New Year honours recipients were disclosed online.The Information Commissioner’s Office (ICO) found officials failed to put in place “appropriate technical and organisational measures” to prevent the unauthorised disclosure of personal information in breach of data protection law. Continue reading...

Cabinet Office fined £500,000 over New Year honours list data breach Regulator says safety of hundreds of individuals was jeopardised after their addresses were posted online

https://www.logos.systems/blog/building-an-it-compliance-policy-the-7-things-you-need-to-consider

Building an IT Compliance Policy – The 7 Things You Need to Consider — Logos Systems Setting up a well-thought-out IT compliance policy helps solve a wide range of security issues. It enables you to operate seamlessly and protect your data.

GoDaddy Password Breach Affects Over A Million Users

The US Securities and Exchange Commission (SEC) has published a “Security Incident” submitted by web services giant, GoDaddy. GoDaddy says that in November 2021, it realized that there were cybercriminals in ...

GoDaddy Password Breach Affects Over A Million Users - CyberHoot The US Securities and Exchange Commission (SEC) has published a “Security Incident” submitted by Web services giant, GoDaddy. GoDaddy says that in November 2021, it realized that there were cybercriminals in its network, kicked them out, tried to determine when the hackers got in, and what they ...

Anti-virus firm McAfee seems to be sending junk emails

I received a flood of renewal demands and unsubscribing doesn’t workI cancelled my McAfee anti-virus subscription earlier this year when I discovered it had been double charging me. It refunded only the current year and led me on a wild goose chase to recover the previous two years’ money; I eventually gave up.Now that my subscription period has ended, it is bombarding me with renewal demand emails several times a day. This weekend I received 15. Continue reading...

Anti-virus firm McAfee seems to be sending junk emails I received a flood of renewal demands and unsubscribing doesn’t work