Posted November 10, 2015
We publish this weekly threat intelligence brief keep you informed on the latest security incidents and threats. For security news throughout the day, follow us on Twitter. Subscribe to our blog to stay up-to-date on findings from our analyst research reports!
“Even with healthcare data breaches seemingly being reported every week, the majority of Americans are not overly worried about the security of their medical information, according to a recent survey. Vormetric found that 89 percent of individuals surveyed did not include medical records in their top three selections for personal data they would be most concerned to lose in a data breach. The survey was conducted by Wakefield Research and interviewed approximately 1,000 adults over the age of 18. Along with low concern over a potential healthcare data breach, the survey also found that individuals may not know enough about the benefits of data encryption. Specifically, 91 percent of respondents said that they would still feel vulnerable if an encrypted file containing their data would go missing.”
“A new piece of crypto-ransomware is targeting German companies: it’s called Chimera, and the criminals behind the scheme are threatening to release sensitive corporate data on the Internet if the targets don’t pay the ransom. The threat is delivered via fake emails from different addresses, apparently from individuals who want to either get a job with the target company or offer a job to an employee of the company. Whatever the variant of the email is, it contains a link pointing to a Dropbox address, where additional information is ostensibly stored, waiting to be perused by the targets.”
“The FBI has given up on its plans for a backdoor into all consumer technology, The Register reports. Speaking at a conference in Boston, Massachusetts, on Wednesday, FBI general council James Baker said that the bureau will give up the “magical thinking” that lead to it seeking a backdoor into all consumer technology, allowing for easy access to sensitive data.”
“NetCracker Technology Corp. has agreed to pay $11.4 million and Computer Sciences Corp. (CSC) has agreed to pay $1.35 million to resolve allegations under the False Claims Act that they used individuals without security clearances on a Defense Information Systems Agency (DISA) contract, the Justice Department announced today. NetCracker is a telecom software and services company headquartered in Waltham, Massachusetts, and CSC is an information technology services company with its headquarters in Falls Church, Virginia.”