Online security – Band H Lock Wed, 20 Oct 2021 02:10:13 +0000 en-US hourly 1 Online security – Band H Lock 32 32 What is the Dark Web Ransomware Marketplace? Tue, 19 Oct 2021 22:30:18 +0000

Editor’s Note: Unlock the knowledge, resources, and expert advice you need to successfully prevent ransomware attacks from impacting your organization’s operations with this free Ransomware Toolkit…

The theme for Week 3 of Cyber ​​Security Awareness Month 2021 is “Explore. To live. Share. ”This is also Cyber ​​Security Career Awareness Week. The purpose of the theme is to highlight all of the many contributions that people in cybersecurity roles can make to society through their work.

One of the ways people in cybersecurity can benefit society is by investigating the use of the dark web by ransomware actors. We will see how these malicious actors use the dark web later in this article. But first, let’s contextualize the dark web itself.

What is the Dark Web?

To understand the dark web, it is important to understand the difference between what is called the “surface web” and the “deep web”. The first is what we all know to be the part of the internet that is accessible through the major search engines. Netflix, Facebook, and anything that appears on a Google search results page falls into this category.

However, the surface web only makes up about 0.03% of the internet. The rest is on the deep web, or the part of the internet not indexed by search engines like Google. According to the Encyclopedia Britannica, the Deep Web includes benign sites such as users’ password-protected email accounts and other web pages that can only be accessed through an online form. It also includes other resources that the owners have intentionally prevented web crawlers from indexing.

The dark web belongs to the latter category. It’s a part of the deep web that visitors can’t access without the help of a special browser called The Onion Router (or TOR). People can use the dark web for legitimate purposes, like joining a chess club and creating a private communication channel, notes CSO. Alternatively, they can use it for malicious purposes.

At least some of this activity takes place in dark web markets (or “dark markets”). According to Nature, Dark Markets are places where members can trade illicit goods such as drugs and weapons. As such, these marketplaces allow digital attackers to connect with each other anonymously to buy and sell stolen credit card information, for example, or provide access to a new phishing kit- as-a-service.

All transactions typically involve bitcoin or some other form of cryptocurrency as the method of payment. This is designed to help conceal the identity of anyone involved in a given transaction.

Ransomware Services on the Dark Web

When it comes to ransomware, Dark Market members typically promote Ransomware-as-a-Service (RaaS) operations. Cybersecurity Ventures clarified that malicious actors post advertisements highlighting different ransomware kits and their different levels of service. An ad might mention a discounted set of multiple digital crime kits, for example. Another can display positive user reviews from a single RaaS operation.

Popularity, functionality, and bundled items are just a few of the factors that help influence the cost of a ransomware offering. CPO Magazine wrote that some ransomware sells or leases access for as little as $ 5. In contrast, more established varieties can cost $ 100 or more.

In the context of these black market advertisements, ransomware developers have traditionally sought to recruit affiliates with RaaS schemes. But that changed after the colonial pipeline attack. As reported by KrebsonSecurity at the time, administrators of the Russian Digital Crime Forum XSS banned individuals from discussing ransomware around the same time the DarkSide ransomware affiliate program went offline. Two more digital crime forums followed shortly thereafter, as The Record pointed out.

Some ransomware players have therefore changed their tactics so that they can continue to engage in dark markets. In particular, Flashpoint has witnessed a shift towards advertising and working with Initial Access Brokers (IABs) in dark markets. This change allows ransomware players to quietly advertise their activities on the dark web. It also allows them to focus on perfecting their malware payloads instead of having to worry about accessing their target’s networks.

Cybereason’s advantage over ransomware

The best strategy for organizations is to prevent a ransomware attack from succeeding in the first place. To do this, they need to invest in a layered solution that leverages behavioral indicators (BIOs) to detect and prevent a ransomware attack in the early stages of initial entry, before sensitive data is exfiltrated for double extortion.

The Cybereason Operation-Centric approach provides the ability to detect ransomware attacks earlier based on rare or beneficial chains of malicious behavior. That’s why Cybereason is undefeated in the battle against ransomware and offers the best prevention, detection and response capabilities on the market, including:

    • Anti-ransomware and deception: Cybereason uses a combination of behavioral detections and proprietary deception techniques to detect the most complex ransomware threats and end the attack before critical data can be encrypted.
    • Intelligence-based antivirus: Cybereason blocks known variants of ransomware by leveraging an ever-growing pool of threat information based on previously detected attacks.
    • NGAV: Cybereason NGAV is powered by machine learning and recognizes malicious components in code to block unknown ransomware variants before execution.
    • Fileless Ransomware Protection: Cybereason disrupts attacks using fileless, MBR-based ransomware that traditional antivirus tools lack.
    • Endpoint controls: Cybereason strengthens endpoints against attacks by managing security policies, maintaining device controls, implementing personal firewalls, and enforcing full disk encryption on a range of device types, fixed and mobile .
    • Protection of behavioral documents: Cybereason detects and blocks ransomware hidden in the most common business document formats, including those that exploit malicious macros and other stealth attack vectors.

Cybereason is committed to teaming up with advocates to stop cyber attacks from endpoints across the enterprise and everywhere, including modern ransomware. Learn more about ransomware defense here Where schedule a demo today to find out how your organization can benefit from a operations-centric approach to security.

Source link

]]> 0
Johnson of UK pays tribute to ‘dedicated and passionate’ lawmaker Amess Mon, 18 Oct 2021 17:06:00 +0000
  • Lawmakers pay tribute to his kindness, his sense of humor
  • Attack raises security questions for lawmakers
  • 25-year-old suspect police questionnaire

LONDON, Oct. 18 (Reuters) – British Prime Minister Boris Johnson paid tribute on Monday to “devoted and passionate” David Amess, a veteran lawmaker stabbed to death as he met members of the public in an attack that heightened concerns about the safety of politicians.

Amess, 69, was stabbed in a church on Friday in Leigh-on-Sea, east London. There, police arrested the 25-year-old son of a former media adviser to a former Somali prime minister. He remains in detention.

They are treating the attack, which Johnson described as a “despicable act of violence”, as potential terrorism.

Amess was the second UK lawmaker to be killed in five years and lawmakers from all walks of life, some fighting back tears, paid tribute to a man they described as a kind, funny and dedicated public servant.

“We will not allow the way Sir David died to undermine his achievements as a politician or as a human being,” Johnson, wearing a black tie, told a House of Commons crowded, who had previously observed a minute of silence.

“David was a patriot who believed passionately in this country, in its people, in its future. He was also one of the nicest, kindest, sweetest individuals to ever grace these benches.”

To cheers, Johnson announced that the town of Southend-on-Sea, in the constituency of Amess, would become a town in his honor, a cause he had championed.

After two hours of tributes in parliament, lawmakers will attend a memorial service at St. Margaret’s Church for the father of five, who had been an MP for nearly 40 years.

“There are tears all around the house this afternoon,” said opposition Labor MP Harriet Harman, the longest-serving Member of Parliament.

Amess’ family, who attended the scene of his murder, said he was a patriot and a man of peace.

“So we ask people to put aside their differences and show kindness and love to everyone. This is the only way to go. Put aside hatred and work for unity,” they said. they stated.

Many colleagues recalled the times Amess made them laugh, including how the devoted Catholic once had a boiled candy blessed by the Pope after he scooped it out of his pocket as just the wrong time.

Candles and a portrait of British MP David Amess, who was stabbed to death during a meeting with voters, are seen at St Michael’s and all Angels Church in Leigh-on-Sea, Britain, October 17, 2021. REUTERS / Chris Radburn

“The Pope took the candy thinking it was a revered object to be blessed, blessed the revered object and David had to put it in his pocket, a holy candy,” said lawmaker James Duddridge.


Amess’s murder has raised questions about the safety of politicians and what should be done to address the growing problem of online abuse.

“Today is a time to remember David, but in the days and weeks to come, we must finally address the threats and violence people face while implementing democracy in this country “said Labor leader Keir Starmer.

“A cowardly attack on a public servant doing their job is an attack on our country and our way of life… our response must always be to show that we will never be intimidated.”

Johnson’s spokesperson said Members of Parliament have been contacted by police to review security.

Detectives are questioning suspect Ali Harbi Ali, a British national, under anti-terrorism laws, looking for a possible link to Islamist extremism. Agents also search for properties in and around London.

Ali had been referred to an anti-radicalization program known as Prevent, the BBC said. But it was not formally of interest to the internal security agency MI5.

Amess was also chairman of the all-party committee that promoted good relations between Britain and Qatar, and The Times newspaper said detectives were investigating the link. Amess visited Qatar last week.

Police warned of the danger the COVID-19 pandemic posed in terms of radicalization, as vulnerable people were spending more time online, potentially exposed to extremist material.

Labor lawmaker Chris Bryant said he received a death threat after urging people to share “a kind message on Twitter today to a politician we disagree with” after the murder of A mess.

Police arrested a 76-year-old man on suspicion of malicious communications.

“Let’s have nicer language. Let’s have our differences, and that’s important … but what I don’t want is hate and meanness,” Lindsay Hoyle, Speaker of the House of Commons, told Sky. “Today is a starting point where we can change the face of politics.”

Elizabeth Piper Additional Reports; edited by Guy Faulconbridge, Ed Osmond, Angus MacSwan and Giles Elgood

Our Standards: Thomson Reuters Trust Principles.

Source link

]]> 0
Lagos to launch agricultural mechanization program – Sun, 17 Oct 2021 14:11:42 +0000

Lagos State Governor Babajide Sanwo-Olu said the state government will soon launch a mechanization program, labeled the “Eko Agro Mechanization Program” with the purchase of 14 new tractors and ‘ancillary equipment for state farmers.

Sanwo-Olu, who said this over the weekend at the grand finale of this year’s World Food Day celebration in the state, explained that the program is part of efforts to ensure safety food in the state.

The governor, who spoke through the Permanent Secretary of the Ministry of Agriculture, Hakeem Adeniji, noted that the program would also ensure that more land is used, thus increasing the state’s economic contribution through agricultural mechanization.

He added, however, that the equipment is to be operated under the operating model known as Tractor-On-the-Go (TOG).

“As part of efforts to achieve our goal of food security by using more land and increasing the state’s economic contribution through agricultural mechanization, we will soon be starting a mechanization program, labeled the ‘Mechanization Program. Eko Agro ”with the purchase of Fourteen (14) new tractors and auxiliary equipment for farmers in the State.

“This equipment will be used according to the operational model known as the Tractor in Motion (TOG),” said the governor.

Governor Sanwo-Olu added that the state government would also improve existing agricultural infrastructure in some rural farming communities to reconnect agricultural value chain actors to input and product markets.

To this end, he stressed that water and sanitation facilities will also be improved in 69 wet markets across the state under the “LAGOS CARES” program with a view to reassuring security in these markets.

Sanwo-Olu noted that this program is expected to reach no less than 15,000 households and create no less than 25,000 jobs for agribusinesses, thus making a significant contribution to the state food basket that will bring farmers back on the road to recovery. economic after COVID-19 pandemic.

“From this year, the Federal Government, through the FADAMA State Development Office domiciled in the Ministry of Agriculture, will provide a relief program, albeit minimal, to poor and vulnerable farmers and existing transformation within the framework of the World Bank assisted by the World Bank. Stimulus labeled “NG CARES” “Program to help poor households with agricultural inputs.

“Production and processing assets, as well as hands-on training on improved management practices and advisory services. This will boost the productivity of individual businesses, increase yields and improve food security in the state.

“Based on the above, we will improve existing agricultural infrastructure in some rural farming communities to reconnect agricultural value chain actors to input and product markets.

“To reassure security in our markets, water and sanitation facilities will also be improved in 69 wet markets across the State as part of the“ LAGOS CARES ”program.

“It is worth mentioning that this program is expected to impact approximately 15,000 households and make significant contributions to the state food basket, which will put our farmers back on the path to economic recovery after the COVID-19 pandemic. The program will create no less than 25,000 jobs for agribusinesses, ”said the governor.

He added that the state government would also consider establishing an “Agritech Center” at the dairy farm complex, Agege to accelerate the development of smart solutions leading to increased agricultural productivity and address the challenges of food insecurity. state as well as diversify the economy.

Sanwo-Olu reiterated the state government’s commitment to intensify its efforts to support farmers, encourage small and medium-scale agro-industries and create an enabling environment for private sector participation in agriculture, adding that this will contribute greatly to the growth of the economy through agriculture and food sufficiency.

The Governor congratulated the Agriculture Commissioner and her team for implementing her administration’s program to promote food security for the benefit of all in Lagos State.

Earlier, Agriculture Commissioner Abisola Olusanya, who spoke through Director of Agriculture Services Abiola Ayoade, noted that the annual edition of the celebration of World Food Day has was enriched with a series of activities during the week-long celebration that culminated in the grand finale. during the weekend.

World Food Day is celebrated annually to raise awareness of the importance and necessity of food security and access to food and nutrition, especially among vulnerable people, in society. .

Source link

]]> 0
Ministry of Public Security releases statistics on attacks on girls online Sat, 16 Oct 2021 08:37:00 +0000

Data released Monday by the Minister of Public Security in honor of International Day of the Girl shows that 67% of the 15,425 reported attacks against minors online were against girls and teenage girls.

The statistics were provided by the Center for the Protection of Children Online (Unit 105).

Some 31% complained of sexual offenses involving threats and blackmail, sexual assault and harassment, soliciting and inappropriate sexual speech.

An additional 18% were social attacks involving shame, avoidance, intimidation and the distribution of humiliating photos and videos that were not of a sexual nature, while the distribution of sexual photos and videos without the consent of the girl they contained represented 7% of the complaints. .

Some 11% called the hotline to report suicidal tendencies following assaults on them.

Young people today prefer to share their feelings and emotions through texts and online, on social networks, on chat platforms while playing and in other similar contexts (credit: SNAPPY GOAT)

The main platforms on which the attacks took place were Instagram, WhatsApp and TikTok.

The International Day of the Girl was announced by the UN with the aim of raising awareness of the inequality between boys and girls that begins at a young age. Many girls around the world face difficult challenges like inequality and sexual assault, and in some extreme cases, sex trafficking and underage prostitution.

“I commend the important and targeted treatment and awareness raising of issues in the lives of girls in the country and around the world,” said Tomer Lotan, Director General of the Ministry of Public Security. “The National Center for Child Protection Online will continue to strive to ensure that every girl and teenager is also safe online. “

“We are at the forefront of the fight against attacks against minors online and are working with the civil administration to protect the safety of children in virtual and physical spaces,” said the commander of Police Unit 105, the lieutenant colonel. Chlomit Landes. “As part of the unit’s work, we are using an intelligence force alongside investigating suspects of any crime against minors. We will continue to strengthen children’s online safety and bring all criminals to justice.”

“We can see a clear gender dynamic in attacks on online minors,” said the head of the unit’s civil administration, Dr Nava Cohen-Avigdor. “Most of the perpetrators are men and most of the victims are women. This fact also reflects the truth in the physical spaces in sexual assault. As a society, we must act to strengthen the personal safety of girls and adolescent girls and women in all walks of life, including online. “

Source link

]]> 0
Tech Giants Say Government Response to Computer Crashes ‘Unworkable’ Fri, 15 Oct 2021 01:40:00 +0000

A coalition of global tech companies has expressed concern over planned “last resort” powers that would allow the federal government to intervene to contain a cyberattack on critical infrastructure.

A letter [pdf] three industry bodies, including the US-based Information Technology Industry Council and the Australian Information Industry Association, comes after a parliamentary committee recommended that the powers be “quickly legislated”.

Industry bodies claim to represent some of the world’s largest technology companies, including Google, Apple, Amazon, Facebook, Microsoft, IBM, Salesforce, Cisco, Dell, Oracle, Intel, SAP, VMware, AMD, HPE, and Accenture.

“Our members share the Australian government’s commitment to protect Australians and Australia’s critical infrastructure from cyber threats,” reads the letter to Home Secretary Karen Andrews.

“However, the [Security Legislation Amendment (Critical Infrastructure) Bill 2020] remains very problematic and largely unchanged despite the many feedback from our organizations.

“Without meaningful revision, the bill will create an unworkable set of obligations and set a troubling global precedent.”

Industry bodies, which also include the Cyber ​​Security Coalition, have expressed disappointment that the Joint Parliamentary Committee on Intelligence and Security recommended rushing into Part 3A of the bill.

Part 3A will establish a regime for the government to respond to serious cyber incidents that impact critical infrastructure, which includes areas such as communications, data storage or processing, and financial services.

Industry bodies said the credentials “caused the most concern for the industry,” as highlighted earlier this year by Google and Amazon Web Services, and urged the government to reject the recommendation.

“As drafted, Part 3A of the bill gives the Australian government powers of information gathering, direction and intervention that are not subject to due process, which would normally allow entities concerned to appeal or have these decisions reviewed independently, ”the letter said. .

“While the government says this power is only intended as a measure of last resort to deal with ‘cybersecurity incidents’, the bill gives the government unprecedented and far-reaching powers, which may have impact on the networks, systems and customers of international entities and should be subject to a mechanism of judicial oversight and oversight prescribed by law.

Industry bodies have also recommended that a mandatory cyber incident reporting deadline be extended to at least 72 hours, as the current 12 hour deadline “diverges from global best practices and will hamper our ability to really focus on incidents. reviews ”.

The requirement to report “impending” cyber incidents should also be removed from the bill, the agencies said, as the government would likely be “inundated with data” from businesses if this were introduced.

“We reiterate once again our demand that the government immediately reconsider its proposed course on these two issues and respond to the important concerns raised by the industry,” said industry bodies.

“Our member companies prioritize cybersecurity, both within our own businesses and for our customers, and we support the Australian government’s goal of improving cybersecurity in Australia.

“However, these two proposals would fall short of that goal, have significant unintended consequences that would reduce security in practice and set dangerous global precedents.”

Source link

]]> 0
Facebook is cracking down on its internal message boards Wed, 13 Oct 2021 20:20:09 +0000

Facebook told employees on Tuesday it was making some of its internal online discussion groups private, in an effort to minimize leaks.

Many Facebook employees join online discussion groups on Workplace, an internal bulletin board that employees use to communicate and collaborate with each other. In Tuesday’s announcement, the company said it was making certain groups focused on platform security and election protection, an area widely known as “integrity,” private rather than audience within the organization, limiting who can see and participate in discussion threads.

The move follows the disclosure by former employee Frances Haugen of thousands of pages of internal documents to regulators, lawmakers and the media. The documents showed that Facebook was aware of some of the damage it was causing. Ms Haugen, a former member of Facebook’s civic disinformation team, filed a whistleblower complaint with the Securities and Exchange Commission and testified before a Senate subcommittee this month.

“As everyone is probably aware, we’ve seen an increase in the number of integrity-related leaks over the past few months,” wrote a technical director in the ad, which was reviewed by The New York Times. “These leaks are not representative of the nuances and complexities involved in our work and are often taken out of context, leading to a poor characterization of our work outside.”