Cyber Security in Delaware
 

CYBER SECURITY NEWS

hero image

Iranian Advanced Persistent Threat Actors Threaten Election-Related Systems

10/22/2020

The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) are warning that Iranian advanced persistent threat (APT) actors are likely intent on influencing and interfering with the U.S. elections to sow discord among voters and undermine public confidence in the U.S. electoral process.

Barnes & Noble confirms cyberattack, suspected customer data breach

10/15/2020

Barnes & Noble has confirmed a cyberattack impacting Nook services and potentially exposing customer data.

Container shipping group CMA CGM resumes online services after cyber attack

10/12/2020

LONDON (Reuters) - CMA CGM, the world’s fourth-largest container shipping group, said it has restored its online business services after a cyber attack last month paralysed activity.

Potential for China Cyber Response to Heightened U.S.–China Tensions

10/01/2020

In light of heightened tensions between the United States and China, the Cybersecurity and Infrastructure Security Agency (CISA) is providing specific Chinese government and affiliated cyber threat actor tactics, techniques, and procedures (TTPs) and recommended mitigations to the cybersecurity community to...

FBI Warns Voters About Election Crimes Ahead of the November 2020 Election

09/24/2020

Fair elections are the foundation of our democracy in the United States, and the FBI is committed to protecting the rights of all Americans to vote. The FBI is issuing this warning to educate voters about federal election crimes and how to avoid them, and to encourage voters to report suspected violations.

City of Hartford postpones first day of school after ransomware attack

09/08/2020

According to a statement published by Hartford Public Schools, the school district serving the city of Hartford, the ransomware attack impacted several of the school's internal IT systems, causing a prolonged outage.

Ransomware: How clicking on one email left a whole business in big trouble

07/30/2020

Security experts have given an insight into how a targeted ransomware attack took down the network of a food and drink manufacturer after hackers took advantage of common security vulnerabilities. The crooks used a phishing attack and took advantage of a number of vulnerabilities...

Five lessons state technology officials took from telework

07/14/2020

Four months after states moved their employees into remote-work environments en masse, officials from California, Delaware, North Carolina and Pennsylvania reflected in an online event Tuesday that while the shift wasn’t devastating to their organizations, as many worried, it created plenty of learning opportunities.

Google removes 25 Android apps caught stealing Facebook credentials

06/30/2020

According to a report from French cyber-security firm Evina shared with ZDNet today, the apps posed as step counters, image editors, video editors, wallpaper apps, flashlight applications, file managers, and mobile games.

Hackers use fake contact tracing apps in attempt to install banking malware on Android phones

06/10/2020

Apps meant to impersonate official government tracing apps from countries including Italy, Russia and Singapore trigger malicious software capable of collecting a range of data from user’s devices, the threat intelligence firm Anomali found in research shared with CyberScoop prior to its publication.

Top federal and state prosecutors form Delaware COVID-19 anti-fraud coalition

04/24/2020

Today, United States Attorney David C. Weiss and Delaware Attorney General Kathleen Jennings announced the formation of a new Coronavirus (COVID-19) Anti-Fraud Coalition, aimed at better protecting the citizens of Delaware from criminal and civil fraud arising from the pandemic.

Attorney General Jennings Warns of Scams Related to Stimulus Checks

04/08/2020

During this time of uncertainty—with unemployment surging and a growing number of confirmed COVID-19 cases—Americans have enough to worry about without fear of predatory scammers,” said Attorney General Jennings. “Scammers will use various tactics to deceive and intimidate Americans. We will not tolerate preying on people’s fear and uncertainty, and I urge Delawareans to report any suspicious scams or phishing attempts to the Consumer Protection Unit.

A Must For Millions, Zoom Has A Dark Side — And An FBI Warning

04/03/2020

Dennis Johnson fell victim last week to a new form of harassment known as "Zoombombing," in which intruders hijack video calls and post hate speech and offensive images such as pornography. It's a phenomenon so alarming that the FBI has issued a warning about using Zoom.

FBI Warns of Teleconferencing and Online Classroom Hijacking During COVID-19 Pandemic

03/30/2020

As large numbers of people turn to video-teleconferencing (VTC) platforms to stay connected in the wake of the COVID-19 crisis, reports of VTC hijacking (also called “Zoom-bombing”) are emerging nationwide. The FBI has received multiple reports of conferences being disrupted by pornographic and/or hate images and threatening language.

COVID-19 Phishing Schemes Escalate; FBI Issues Warning

03/23/2020

As the global COVID-19 pandemic worsens, security firms and law enforcement, including the FBI, are warning of increasing phishing and other cybercriminal scams targeting a largely at-home workforce.

Hackers are seizing on coronavirus fears to steal data, researchers and U.S. regulators warn

03/12/2020

“We don’t want to just keep the cyber criminals at bay, we want to burn down their infrastructure,” FBI Director Christopher A. Wray told an audience of several hundred cybersecurity experts gathered at Boston College on March 4, in an address that focused on the comprehensive, innovative, and broadly collaborative approach needed to combat an increasingly complex and widespread threat.

FBI takes aim at cyber crime infrastructure

03/10/2020

“We don’t want to just keep the cyber criminals at bay, we want to burn down their infrastructure,” FBI Director Christopher A. Wray told an audience of several hundred cybersecurity experts gathered at Boston College on March 4, in an address that focused on the comprehensive, innovative, and broadly collaborative approach needed to combat an increasingly complex and widespread threat.

Threat Actors Capitalize on Global Concern About Coronavirus in New Phishing Campaigns

03/04/2020

The Cofense Phishing Defense Center (PDC) has observed a new phishing campaign found in an environment protected by Ironport that aims to strike alarm and manipulate end users into clicking on a Microsoft-branded credential phish that prays on concerns surrounding the coronavirus.

CISA and states tell Senate more cybersecurity resources needed

02/11/2020

State IT officials and the federal government’s top civilian cybersecurity official told members of the U.S. Senate Tuesday that the federal government needs to provide state and local governments with more assistance and expertise in protecting their networks and other critical infrastructure.

NFL Twitter accounts hacked, including those of Super Bowl-bound Chiefs and 49ers

01/27/2020

A Saudi hacker group claimed responsibility for compromising several accounts, including those of Kansas City and San Francisco.

Ransomware attack causes 300 firings in Arkansas

12/26/2019

The chief executive officer of a telemarketing company in Sherwood, Arkansas has let go 300 employees after the company failed to recover from a ransomware infection months back.

Visa: Gas Station Networks Targeted to Steal Card Data

12/16/2019

Several sophisticated cybercriminals gangs are targeting "fuel dispenser merchants" throughout North America, in some cases by planting malware within corporate networks to steal payment card data, Visa warns in a new alert.

Unlike older credit and payment card scams, where physical skimmers are hidden inside gas pumps, Visa' security analysts discovered two incidents where the attackers planted malware within merchants' corporate networks.

Sale of 4 Million Stolen Cards Tied to Breaches at 4 Restaurant Chains

11/19/2019

An advertisement posted on the cybercrime store Joker's Stash is for a new batch of ~4 million credit/debit cards stolen from four different restaurant chains across the midwest and eastern United States.

Louisiana Government Recovering From Ransomware Attack

11/19/2019

Governor Describes 'Aggressive' Incident Response Efforts.

Interested in protecting your data from ransomware? Following these cyber hygiene approaches could prevent disaster:

  1. Install the latest software and app updates on your devices.
  2. Install anti-virus software on your devices and configure it to automatically update.
  3. Have long, strong passphrases and don't use the same passphrase for everything.
  4. Don't open attachments in unsolicited emails, even if they come from people in your contact list.
  5. Never click on a URL contained in an unsolicited email, even if you think it looks safe. Instead, close out the e-mail and go to the organization's website directly.
  6. Backup your important data offline.

For more information on Ransomware and what to do if you are a victim, visit Digiknow Ransomware.

The Language of Cybercrime

11/18/2019

Romance scam victims are people who have been grifted by fake love interests, usually people they meet online. At first they're asked for loans, but later they can find themselves pressured to help the cybercrime network launder its money. Romance scams are lucrative. The FBI says Americans reported losing $362 million to romance and confidence scams last year, a big jump over the $211 million reported the year before.

Cybercrime Booms As Scammers Hack Human Nature To Steal Billions

11/18/2019

By now, cybercrime is a routine danger. But as ordinary as it seems, it's still really bad for businesses. A company can lose thousands, even millions to a single deceptive email to an employee. And as NPR's Martin Kaste reports, business has never been better for the scammers.

BlueKeep Attacks Arrive, Bearing Cryptomining Malware

11/04/2019

The cybersecurity community had been holding its breath in anticipation of mass attacks targeting the severe BlueKeep vulnerability in Windows, which Microsoft has patched. The first in-the-wild exploits have now arrived, although experts say they don't constitute an emergency - at least yet.

Interested in avoiding malware? Follow these cyber hygiene approaches:

  1. Be vigilant for phishing. Spam and Phishing are the primary vectors by which malware infects computers.
  2. Keep all systems patched and up to date.
  3. Backup your files and store them in an encrypted state

17 iPhone apps have been removed from the Apple App Store for delivering malware

10/25/2019

Uncovered by researchers at security company Wandera, the 17 applications cover a range of categories including productivity, platform utilities, and travel. All 17 were found to be communicating with the same command-and-control server, which uses strong encryption in an effort to hide investigation into the malicious activity.

Interested in avoiding malicious apps? Following these cyber hygiene approaches could prevent disaster:

  1. Only download apps from trusted sources.
  2. Research an app before downloading it.
  3. Start with looking at the app reviews. Look for bad reviews that are consistently referenced by other users.
  4. Be mindful that some developers pay for fake reviews.
  5. Don't be fooled by apps with similar names.
  6. Look for apps with a large number of downloads and positive reviews.
  7. If you do download an app, be sure to limit the personal information given to the app.

For more information on Ransomware and what to do if you are a victim, visit Digiknow Ransomware.

Johannesburg Struggles to Recover From Ransomware Attack

10/25/2019

Johannesburg has been hit with a ransomware attack that is crippling municipal services, according to South African news media reports and the city's Twitter feed. City Power, an electric utility owned by the city that was hit by a similar attack in July - also was affected by the latest attack.

Interested in protecting your data from ransomware? Following these cyber hygiene approaches could prevent disaster:

  1. Install the latest software and app updates on your devices.
  2. Install anti-virus software on your devices and configure it to automatically update.
  3. Have long, strong passphrases and don't use the same passphrase for everything.
  4. Don't open attachments in unsolicited emails, even if they come from people in your contact list.
  5. Never click on a URL contained in an unsolicited email, even if you think it looks safe. Instead, close out the e-mail and go to the organization's website directly.
  6. Backup your important data offline.

For more information on Ransomware and what to do if you are a victim, visit Digiknow Ransomware.

Are You Cyber Safe?

10/24/2019

Join the Department of Technology and Information on October 24, 2019 from 10:30am – 11:30am and 1pm to 2pm at the Modern Maturity Center at 1121 Forrest Ave., Dover, DE 19904 for practical advice on using smart phones and tablets safely. Hands-on help for the topics covered will be provided free of charge.

Ransomware Attacks Map chronicles a growing threat

10/22/2019

Many government officials had already keyed into the ransomware threat, but Liska’s research lent new insight to just how broad, aggressive and increasingly common this type of malware had become.

Small Business Cybersecurity Workshop

10/17/2019

In an effort to strengthen the security posture of local businesses, DTI has partnered with the University of Delaware’s Cybersecurity Initiative, Cybersecurity Scholars, to host a workshop of small businesses on cybersecurity essentials. Event will be held October 17th from 2PM-6:30 PM at the iSuites on Floor 1 of Evans Hall, 139 The Green, Newark, DE 19716. Register Today

From Ohio's "baby bot" to driver's ed in Delaware: How states are using AI

10/15/2019

"AI is an integral part of our vision going forward," Utah CIO Mike Hussey says in the NASCIO report. "For now, we're just getting our feet wet as we try to increase our understanding of this new technology. But as AI continues to mature, the technology will become pervasive throughout everything we do."

Xbox Live to Get Optional Chat Filters to Stop Toxic Trash Talk

10/14/2019

This fall, Microsoft will roll out automated filters that'll let you screen out offensive remarks made in text-based chats on Xbox Live. The filters will come in four tiers: Friendly, Medium, Mature, and Unfiltered.

Top Tax Scams to Watch out For

10/13/2019

Diligent taxpayers are being increasingly targeted by con artists who are well-versed in manipulating the revenue system. The crooks usually impersonate IRS (U.S. Internal Revenue Service) officials, sending fake emails or . . .

Information Event

10/10/2019

Join the Department of Technology and Information on Birthday Day day, October 10, 2019 from 10am – 2pm at the Modern Maturity Center at 1121 Forrest Ave., Dover, DE 19904 for cyber security information and tips for all citizens.

Paper Shredding Event

10/02/2019

Join the Department of Technology and Information in partnership with the Delaware Solid Waste Authority for a paper shredding event on October 2, 2019 at the Delaware Recycling Center 1101 Lambson Lane, New Castle, DE 19720. Residents can bring up to 2 file boxes of personal confidential papers for shredding (financial and legal documents, receipts, and tax and medical records). Papers with staples or paper clips are accepted. Event is restricted to Delaware residents and will be held rain or shine. The Department of Technology and Information will be providing information to citizens about how to recover from a data breach and restore your identity.

A Ransomware Tale: Mayor Describes City's Decisions

09/05/2019

The mayor of New Bedford, Massachusetts, took the unusual step this week of holding a press conference to describe a recent ransomware attack and explain why the city decided not to pay the $5.3 million ransom that was demanded.

Interested in protecting your data from ransomware? Following these cyber hygiene approaches could prevent disaster:

  1. Install the latest software and app updates on your devices.
  2. Install anti-virus software on your devices and configure it to automatically update.
  3. Have long, strong passphrases and don't use the same passphrase for everything.
  4. Don't open attachments in unsolicited emails, even if they come from people in your contact list.
  5. Never click on a URL contained in an unsolicited email, even if you think it looks safe. Instead, close out the e-mail and go to the organization's website directly.
  6. Backup your important data offline.

For more information on Ransomware and what to do if you are a victim, visit Digiknow Ransomware.

Delaware State Police phone number used in scam calls

08/20/2019

The Delaware State Police was made aware of multiple incidents in which individuals have received phone calls which appear on their caller ID as coming from the DSP. To further convince the recipient that the caller is an official representative of the DSP, victims are advised to look up the phone number where the call is originating from. When the victim researches the number, it does appear to be a working DSP phone number.

Ransomware Attack Hits 22 Texas Towns, Authorities Say

08/20/2019

Computer systems in 23 small Texas towns have been hacked, seized and held for ransom in a widespread, coordinated cyberattack, the authorities said this week. The Texas Department of Information ...

Interested in protecting your data from malware? Following these cyber hygiene approaches could prevent disaster:

  1. Install the latest software and app updates on your devices.
  2. Install anti-virus software on your devices and configure it to automatically update.
  3. Have long, strong passphrases and don't use the same passphrase for everything.
  4. Don't open attachments in unsolicited emails, even if they come from people in your contact list.
  5. Never click on a URL contained in an unsolicited email, even if you think it looks safe. Instead, close out the e-mail and go to the organization's website directly.
  6. Backup your important data offline.

For more information on Ransomware and what to do if you are a victim, visit Digiknow Ransomware.

Louisiana Declares Emergency After Malware Attacks

07/26/2019

Interested in protecting your data from malware? Following these cyber hygiene approaches could prevent disaster:

  1. Install the latest software and app updates on your devices.
  2. Install anti-virus software on your devices and configure it to automatically update.
  3. Have long, strong passphrases and don't use the same passphrase for everything.
  4. Don't open attachments in unsolicited emails, even if they come from people in your contact list.
  5. Never click on a URL contained in an unsolicited email, even if you think it looks safe. Instead, close out the e-mail and go to the organization's website directly.
  6. Backup your important data offline.

For more information on Ransomware and what to do if you are a victim, visit Digiknow Ransomware.

NASCIO Endorses State and Local Government Cybersecurity Act

07/11/2019

"State and local governments are responsible for safeguarding everything from election systems to an increasing amount of sensitive personal data – from social security numbers and credit card information to detailed medical records,” Peters said when the legislation was introduced.

Certain Insulin Pumps Recalled Due to Cybersecurity Issues

06/27/2019

The Food and Drug Administration warns patients and healthcare providers the medical device manufacturer Medtronic has issued a voluntary recall of certain wireless insulin pumps due to cybersecurity vulnerabilities that cannot be adequately patched and therefore pose safety concerns.

Scam Alert: Delaware Department of Revenue Warns Taxpayers of Fraudulent Letters

04/29/2019

The Delaware Division of Revenue wants to alert citizens to a new taxpayer scam that is happening in Delaware. Victims may receive a letter from "The Bureau of Tax Enforcement" that threatens property seizure and wage garnishment unless they call a toll-free number to "avoid enforcement."

Could The 10-Year Challenge Be Putting Your Data At Risk?

01/20/2019

In the latest social media craze, people are sharing photos comparing how they looked 10 years ago with how they look today. Dubbed the "10-Year Challenge," the viral fad has attracted everyone from celebrities like Mariah Carey and Justin Baldoni, to environmentalists seeking to highlight the impacts of climate change.

Patch Tuesday, January 2019 Edition

01/09/2019

Microsoft on Tuesday released updates to fix roughly four dozen security issues with its Windows operating systems and related software. All things considered, this first Patch Tuesday of 2019 is fairly mild, bereft as it is of any new Adobe Flash updates or zero-day exploits. But there are a few spicy bits to keep in mind. Read on for the gory details.

Data breaches affected more than a billion people in 2018

01/04/2019

The personal information of more than a billion people was compromised in 2018 as companies holding the data failed to keep it safe.