COVID-19 Update 4/1/2020
During the COVID-19 crisis, our analysts are tracking open-source information sources to keep our followers up to date with COVID-19 Cybercrime. Today’s report:
- As consumers ramp up their online spending, the criminals who hack websites to digitally "skim" credit card numbers are having a field day, Wired magazine reports. Digital skimming activity — the injection of malicious code into legitimate websites to grab payment data — increased 20 percent between February and March, a security analyst reported.
- Popular video-conferencing Zoom is leaking personal information of at least thousands of users, including their email address and photo, and giving strangers the ability to attempt to start a video call with them through Zoom, Motherboard reports.
- For the third time in as many months, the FBI warned that cybercriminals and state-sponsored hackers are using Kwampirs malware in supply chain and healthcare-related attacks, SC Magazine reports.
“The FBI assesses Kwampirs actors gained access to a large number of global hospitals through vendor software supply chain and hardware products,” the alert said. “Infected software supply chain vendors included products used to manage industrial control system (ICS) assets in hospitals.”
We Can Secure Your Remote Infrastructure
IT managers must prioritize cybersecurity as they transition employees to work remotely. This massive shift in operations to a less secure home environment poses significant risks that must be managed.
Get a curated briefing of the week's biggest cyber news every Friday.
Intelligence and Insights
How to Hire a Good Pen Testing Firm
Although internal pentesting is common in some larger companies, hiring an external pentesting firm helps eliminate bias and bring in new techniques from experienced professionals …
Why Does My Company Need Penetration Testing Services?
Penetration testing services are crucial if you want to protect your company, but why do you need them? Learn more in this guide …
What are the 12 Requirements of PCI DSS Compliance?
PCI Compliance requirements are created by the PCI Standards Council in order to secure and protect the entirety of the payment card ecosystem …