Global Bust of Ransomware Hackers Who Targeted 100+ Companies
Law Enforcement Agencies Seize $375K in Ukraine Ransomware Bust

A coordinated effort by law enforcement agencies is viewed as a good sign, but security analysts fear this is just the tip of the iceberg.

Five law enforcement agencies today announced the arrest of two ransomware operators who, starting on April 20, allegedly conducted a string of targeted attacks against large industrial organizations in Europe and North America.

The arrest was made in Ukraine on September 28 by the French National Cybercrime Centre of the National Gendarmerie, the Cyber Police Department of the National Police of Ukraine, the FBI Atlanta Field Office, Europol, and Interpol.

A Europol release states the arrests led to the seizure of US$375,000 in cash and two luxury vehicles worth €217,000 (US$252,116), as well as the freezing of $1.3 million in cryptocurrency.

Ukrainian authorities said the suspects were responsible for attacks against more than 100 organizations worldwide and caused more than $150 million in damages.

As of Monday afternoon, the identity of the ransomware gang was not disclosed. Europol said the ransomware operators were known for their lofty ransom demands, which in some cases hit €70 million (US$81.3 million).

This bust was significant because the threat actors were arrested in Ukraine, which the industry often views as a relatively safe haven for cybercrime, says Jake Williams, co-founder and CTO at BreachQuest.

"This is almost certain to throw a monkey wrench in other ransomware-as-a-service operations," says Williams. "Some operators will worry about information compromised in this bust, while others are re-evaluating the relative safety of their physical operations, especially if they're operating in Ukraine." darkreading.com

Attackers See More Opportunity to Inflict Global Damage
Why today's cybersecurity threats are more dangerous

Greater complexity and interdependence among systems gives attackers more opportunity for widespread, global damage, say government and industry experts.

Unlike 20 years ago, when even extensive IT systems were comparatively standalone and straightforward, the interdependencies of systems now make dealing with and defending against threats a much more difficult proposition. "The core problem here is complexity and our interdependence," Snyder said. "That is something that we're not going to move away from because that is providing us flexibility and functionality and all these other critical functions that we need. We've got a growing problem here."

One new variable thrown into the digital mix is the meteroic growth of ransomware, which makes it appear that cyberattacks are getting worse. "I think that the ransomware attackers have found a perfectly successful illegitimate business model," Rand Corporation researcher Jonathan Welburn said. "Every time there's a large-scale attack, we see that [victims] issue a payment, and it solves the problem. It's a really good advertisement for that business model."

Unsecured devices "the big hairy monster under the bed"

Even if some major tech players such as Microsoft have improved their security postures, Snyder pointed to what she considers the overall stasis of the cybersecurity industry as "the biggest monster under the bed." Since those early days when worms and viruses were poised to cripple significant portions of the web, "we just didn't do anything as an industry," she said. "We didn't implement better technologies. We didn't get better at mitigating these strategies. We didn't reduce our attack surface. We didn't work on memory corruption issues."

Moreover, the attack surface today is not only far more extensive than it was before, but it also includes internet-of-things (IoT) devices that, unlike mainframe computers and laptops and even mobile devices, are difficult to update from a security perspective. "A lot of these devices don't have the amount of memory or storage or CPU capabilities" needed to accommodate security updates, Snyder said. "It's a huge opportunity for attackers. It's very difficult for the people who manage these devices to be able to even inspect [them] and recognize whether they are actually compromised or are using the code that we intended for them to run at deployment. That's the big, hairy monster under the bed for me." csoonline.com

New Cybersecurity Legislation
Senators introduce bill to strengthen federal cybersecurity after attacks
Senate Homeland Security and Governmental Affairs Committee Chairman Gary Peters (D-Mich.) and ranking member Rob Portman (R-Ohio) introduced a bill Monday to overhaul and improve federal cybersecurity policies following multiple major cyberattacks.

The legislation is aimed at updating the Federal Information Security Modernization Act, signed into law in 2014, and takes steps to clarify reporting requirements for federal agencies if they are successfully targeted by hackers.

"Increasingly sophisticated cyber-attacks against our federal agencies by foreign adversaries - and criminal organizations they often harbor - highlight the urgent need to enhance federal cybersecurity," Peters said in a statement Monday.

The bill clarifies the Cybersecurity and Infrastructure Security Agency's (CISA) role in responding to cybersecurity incidents, with federal agencies required to report major attacks to both CISA and Congress, and would ensure CISA is the lead organization on responding to these incidents.

It also requires the Office of Management and Budget to develop guidance to help federal agencies best use funds to shore up cybersecurity, and codifies part of the executive order President Biden signed in May aimed at improving federal cybersecurity. thehill.com

Behind Facebook's Worldwide Outage
Facebook's giant outage: This change caused all the problems

Facebook says a configuration issue knocked its social media apps offline on Monday, October 4.

Facebook blamed its six-hour outage on Monday on a faulty configuration change that affected its vast social media platforms and internal systems. Facebook, alongside WhatsApp and Instagram, suffered a global outage on Monday, October 4 that began at approximately 11:44 EDT and dragged on well into the afternoon.

In a subsequent blog post, Facebook's VP of infrastructure, Santosh Janardhan, said the outage had been caused by a technical issue affecting its Border Gateway Protocol (BCP) routing system, which had "a cascading effect on the way our data centers communicate, bringing our services to a halt."

Monday's outage also affected internal tools at Facebook that made diagnosing and fixing the problem more difficult, said Janardhan. According to the New York Times, the outage rendered engineers' access cards useless, meaning staff couldn't get into the buildings where the affected servers were housed.

"Our services are now back online and we're actively working to fully return them to regular operations. We want to make clear at this time we believe the root cause of this outage was a faulty configuration change." zdnet.com

Ransomware Attack On Alabama Hospital Caused Baby's Death, Lawsuit Alleges

Windows 11 Available: What Security Pros Should Know
 

Facebook Outage Hits Online Retailers
Local retail businesses feel impact of Facebook outage
The six-hour Facebook outage wasn't just a nuisance for some, it was a hit in the wallet to local business owners who rely on the social media giant for sales.

Stacey Leighton and Maria Falcione have a clothing and jewelry shop on Main Street in Walpole. But the duo also sells their items online.

Leighton, owner of Design on a Dime Women's Boutique, attributes 50% of her profits to online and social media sales. Falcione, owner of Maria Elaina Designs, sells about 75% of her jewelry and other accessories on Facebook and Instagram.

"This is our income. It's huge for us," Falcione said of the Facebook outage Monday. "I gave up my other career. So, it's all we count on."

The store is closed on Mondays, so the pair can focus on online sales and shipping. When they realized Facebook was down, it was utter panic.

"I thought something was wrong with my phone," Leighton said. "So, I shut my phone down, I removed the Facebook app. I was in panic mode. And then I finally wrote Maria. And I'm like, 'What is going on? This our livelihood.'"

Facebook and Instagram, as well as instant messaging service WhatsApp, went down worldwide Monday. Facebook apologized to users on Twitter Monday evening as it slowly restored services but didn't elaborate on the issue that forced the shut-down. boston25news.com

Amazon's Dog-Like Security Robots
Amazon's controversial vision for the future of your home security
During an invite-only press conference on Tuesday, the company showed off an autonomous, 20-pound dog-like robot named Astro with large, cartoon-y eyes on its tablet face and a cup holder. The robot -- not unlike an Alexa on wheels -- uses voice-recognition software, cameras, artificial intelligence, mapping technology and voice- and face-recognition sensors as it zooms from room to room, capturing live video and learning your habits.

Amazon also announced a subscription service called Virtual Security Guard for Ring cameras. Ring, the smart doorbell and camera company it acquired in 2018 for $1 billion, will work with third-party professional monitoring companies, such as Rapid Response, to analyze a live feed from its outdoor cameras. The agents can use the camera's two-way talk functionality to communicate with visitors and activate the camera's siren or send emergency services as needed. (Ring already sells a $250 drone called Always Home Cam with an attached camera that can automatically fly around your house and stream video to your smartphone.) cnn.com

Facebook, Instagram, WhatsApp down in global outage

Lee County, FL: Two men caught trying to steal from Cape Coral Home Depot part of Florida crime spree
Two men are in the Lee County jail after they were caught attempting to steal $18,000 worth of tools and accessories from a Home Depot. The Cape Coral Police Department said on September 30, Arjune Nandalall and Ronnie Bridgelal were identified by loss prevention officers inside the Home Depot on Skyline Boulevard in Cape Coral. The pair were filling trash cans and bins with high-priced tools and accessories when they were approached by police. A CCPD report said the two men tried running out of the gardening section and back doors of Home Depot before being apprehended. Once the two were in custody, authorities began realizing they were part of Home Depot thefts in Orlando, Bradenton, and Riverview. The total costs of those thefts are upwards of $80,000. nbc-2.com

Manteca, CA: Police nab pair suspected of conducting organized retail theft
The men, ages 54 and 32, respectively, worked as a team - with one allegedly using a suitcase for sale in the store to load up more than $1,000 worth of merchandise while the other gathered other items that they intended to steal. When the first man exited the store with the suitcase and began approaching a Toyota Prius that was parked in the parking lot, he was stopped by Manteca Police and taken into custody without incident. The second man walked out of the store with clothes concealed on him and was contacted and ultimately arrested. During an investigation of the two men and their previous actions it was determined that the same two men were suspects of a previous theft at Lowe's store in Stockton - a theft that the store wasn't even aware happened until Manteca Police Organized Retail Theft Detective Dave Brown contacted them. One of the suspects was arrested in August at the Manteca Wal-Mart location after he tried to steal $940 worth of merchandise, and the other was on post-release community supervision and had three warrants out for his arrest. The pair are believed to be responsible for thefts at stores from Modesto to Sacramento. mantecabulletin.com

Cincinnati, OH: 'Repeat offender' stole over $28K in items from stores,
catalytic converters
A Pleasant Ridge man facing multiple theft charges is accused of stealing thousands in tools, lawn equipment and other items from stores in Hamilton County and surrounding jurisdictions, court records show. Curtis Burks, 30, of Pleasant Ridge also is accused of stealing catalytic converters off two vehicles. He is being held on 11 counts of theft at the Hamilton County Justice Center. Burks also is charged with possession of criminal tools, criminal damaging or endangering and obstruction of official business, according to court documents. The offenses in Hamilton County were reported since at least January at Home Depot and Walmart stores in Westwood; Home Depot in Springdale and Lowes in Columbia Township, according to court documents. fox19.com

Shelby County, TN: Fired worker accused of cleaning out cousin's store
A Memphis man is accused of stealing nearly $29,000 worth of merchandise from his cousin's wireless store on East Shelby Drive two days after being fired from the business. Members of the Shelby County Sheriff Office's ALERT unit responded to a break-in last month at B Connected Wireless in the Shelby Collection strip mall. ALERT stands for Area Law Enforcement and Retailers Team. The owner of B Connected Wireless said he had recently fired his cousin and said his cousin sent him text messages threatening to "clear out his store." wreg.com

Tupelo, MS: Man accused of shoplifting $4,500 from Belk's
A Lafayette County man is sitting in the Lee County Jail after he reportedly tried to steal more than $4,500 of merchandise from a Tupelo store. Tupelo police responded to The Mall at Barnes Crossing at around 7 p.m. on Sept. 30, where a Belk's employee reported they had detained a man in the act of shoplifting a felony amount of goods. Employees saw the suspect take a suitcase from the store and then placed multiple clothing items from the store inside the luggage. news.yahoo.com

Texarkana, TX: Police looking for two men caught on camera stuffing their pants with $550 of items from a lingerie store

St. Marys, PA: Man accused of stealing more than $3,000 in items from Walmart