News

Hackers Halt Family Reunification Efforts

Hackers have scooped the data of more than 515,000 people from the Red Cross, according to a press release by the organization mid-January. According to the International Committee of the Red Cross, the information obtained includes confidential and personal identifying information of "highly vulnerable people, including those separated from their families due to conflict, migration and disaster, missing persons and their families, and people in detention.

Romance and Investment scams top Social Engineering in 2021

The amount of total losses through fraud originating on social media is now 19 times higher than it was just five years ago in 2017, according to a Consumer Protection Data Spotlight published by the Federal Trade Commission on Jan 25.

According to the report, "More than 95,000 people reported about $770 million in losses to fraud" from threat actors using social engineering through social media in 2021.

The FTC explains that social media is a low-cost strategy.

US Government “Initiates the widest empowerment and expansion of CISA through legislation since the SolarWinds incident”

The next step in critical infrastructure cybersecurity defense now begins as Joe Biden, like modern presidents before him, signed the National Defense Authorization Act of 2022 into law at the end of last month.

Sections 861-867 focus on Small Businesses, including committing the Department of Defense to analyze and review how their Cybersecurity Maturity Model Certification (CMMC) can work for small businesses.

2021 Sees More Scam Calls Than Ever Before

Almost a quarter of Americans (23%) have reported losing money to a phone scam in the past year, according to Truecaller Insights US Spam & Scam Report 2021. The actual percentage of people who have fallen for a scam, whether or not they've given money, is 31%.

Truecaller estimates that in total, Americans lost $29.8 billion, with an average of $502. Expanding, Truecaller says that 60% of these calls were robocalls instead of actual humans.

Movie Pirates Discover Their Systems Hijacked

While you may not be a pirate yourself, chances are you know someone who gets their entertainment from less-than-legal means. If this is being done on your network, you might be at risk too. It's no surprise that the top pirated movie of 2021 was the latest Spider-Man film, which has even broken pre-2020 records at the box office.

GoDaddy Breach Affects Millions

On Monday, Nov. 22, popular domain registrar GoDaddy revealed in a public SEC filing that "an unauthorized third party" hacked into its systems back in early September and had access until mid-November.

According to GoDaddy, "Using a compromised password, an unauthorized third party accessed the provisioning system in our legacy code base for Managed WordPress.

FBI Email Servers Hacked; Fake Warnings Sent

The nonprofit SpamHaus, which tracks spam e-mails, noticed tens of thousands of urgent FBI bulletins going out the morning of November 13. These bulletins, warning of a "sophisticated chain attack," were sent by the FBI's servers. In actuality, a hacker had been able to get into the Bureau's e-mail notification system to distribute the false warnings.

House Passes SBA Cyber Security Act

The House unanimously passed H.R. 3462, the SBA Cyber Security Awareness Act, in early November, sending it to the Senate for approval.

"The SBA will be required to conduct an annual assessment of IT equipment and cybersecurity capabilities, and provide Congress a detailed account of any cyber security risk," said Rep.