Investigators at Moscow-based cybersecurity firm Kaspersky had said the “backdoor” used to compromise up to 18,000 customers of US software maker SolarWinds resembled malware tied to a hacking group known as “Turla,” which operates on behalf of Russia’s FSB security service. Moscow had repeatedly denied the allegations. Experts mentioned three similarities between the SolarWinds backdoor and a hacking tool called “Kazuar” used by Turla made it likely Russian in origin.
A Kaspersky report said that SMBs and enterprises that decide to voluntarily inform stakeholders and the public about a data breach, on an average, are likely to lose 40% and 28% less than, respectively, from their peers that saw the incident leaked to the media. Cost of damage suffered from a data breach to SMBs can come down to $93k if disclosed to stakeholders from $155k, if leaked to media. Similarly, for enterprises, it is $1.134 mn compared to $1.583 mn.
Cyber-fraud incidents may go up in 2021 as more and more users are getting access to the Internet and entering the digital payments ecosystem, warned Kaspersky. The researchers also said that lockdown has forced many micro small and medium-sized enterprises to go digital. These MSMEs will have to take robust cybersecurity measures to protect customer’s personal information. Any loopholes may provide attackers with an opportunity to go after them.
Cybersecurity agency Kaspersky detected 120 suspicious websites mentioning ‘PlayStation’ in their scams and phishing campaigns. Cyberscam around gaming console increased as Microsoft and Sony launched Xbox X and PS5, respectively this month and together they found mention in half of the malicious activities. PS holds 96% of gaming consoles in India, enabling cybercriminals to use its popularity to luring people to steal private and monetary data.
Kaspersky has discovered new banking malware called Ghimob, that can spy and steal data from 153 Android apps including banking. The malware, using names like Google Docs, WhatsApp Updater, Google Defender, can be hidden inside malicious apps available on third-party app downloads or shared via email. Users in Brazil are the most targeted followed by India, China, US. It blocks the user from uninstalling it, restarting or shutting down the device.
Cybersecurity investments continues to grow YoY, even though the overall IT budget has fallen from $1.2m in 2019 to $1.1m in 2020 among SMBs, and from $74.1m to $54.3m for firms, as per Kaspersky’s report. SMBs allocated $275,000 to cybersecurity while enterprises allocated $14m. Majority of firms expect these figures to grow in the next 3 years, by 11% in enterprises and 12% in SMBs. However, one in 10 firms said they’re going to reduce spend on IT security.
DDoS attacks on educational online resources, from Jan-June, have increased by at least 350%, compared to the same time in 2019. Globally, the total number of DDoS attacks increased by 80% in Q1, 2020, as compared to 2019. Apart from DDoS attacks, educators and students, during the period, also encountered an increased number of various threats distributed through online learning platforms. Phishing pages and emails also exploited these platforms.
Cybersecurity firm Kaspersky, in a report, said that the Q2 of 2020 saw a 300% rise in DDoS attacks as compared to the same period last year. The figure is almost the same as it was in the Q1 of the year, Kaspersky noted. Security experts believe that just like ransomware attacks the rise in DDoS attacks was due to the COVID-19 pandemic. In a WFH environment, cybercriminals find it easier to target enterprise networks, which are usually more secure.