CryptoniteNXT in the Media

Quarterly News Round-Up

Quarterly News Round-Up

Cyber Attack Watch

Read about the cyber attacks that have been making headlines

 

(April 3, 2018)
Major U.S. pipeline hit by cyberattack on transaction software

A supply chain cyberattack has disrupted a customer transaction service for a network of U.S. natural gas companies, according to multiple news reports.

It affected a software platform, developed by a company named Energy Services Group LLC, that is used to process customer transactions, according to Bloomberg News. Such data-exchange software is widely used in the gas industry, though the attack was limited to the Energy Services platform… [READ MORE]

 

(March 29, 2018)
One of the Biggest and Most Boring Cyberattacks Against an American City Yet

Want to hear a boring story?

I can’t submit an expense report for a recent out-of-town work trip. I’ve got all the receipts, except one from long-term parking at the Atlanta airport. A sensor lets me in and out of the parking lot there, and my account gets charged automatically. Later, I can download a receipt from a website, which I submit to accounting at my university, which creates an expense report, which eventually processes a reimbursement… [READ MORE]

 

(March 10, 2018)
U.S. More Vulnerable To Weaponized Cyberattacks Than You Think

Until Americans get more serious about cybersecurity, the United States remains extraordinarily vulnerable to attacks from enemy nations–and even individual hackers–on our electric grid, hospitals, infrastructure, and companies large and small.

That was the sobering takeaway from the War Games: From Battlefield to Ballot Box panel of experts at South by Southwest Friday… [READ MORE]

 

(February 21, 2018)
Global Cybercrime Costs $600 Billion Annually: Study

The annual cost of cybercrime has hit $600 billion worldwide, fueled by growing sophistication of hackers and proliferation of criminal marketplaces and cryptocurrencies, researchers said Wednesday.

A report by the security firm McAfee with the Center for Strategic and International Studies found theft of intellectual property represents about one-fourth of the cost of cybercrime in 2017, and that other attacks such as those involving ransomware are growing at a fast pace… [READ MORE]

 

Cryptonite Announcements & News

(April 5, 2018) 
Cryptonite and MDISS Partner to Reveal Cybersecurity Solutions in the “Health Care Cybersecurity Best Practices” Report

Cryptonite, a leader in moving target cyber defense, and MDISS, the Medical Device Innovation, Safety and Security Consortium, released today the joint “Health Care Cybersecurity Best Practices” report, which provides a snapshot of some of the current cybersecurity environments in health care, shares important insights into cyber threat related trends in these environments, and identifies recent technology solutions that can help maintain the integrity of medical devices that are installed and connected in health care network environments… [READ MORE]

 

(Feb. 27, 2018)
Industry Leaders Launch Non-Profit ICS Village to Raise Awareness of Industrial Control System Security Issues and Provide Hands-On Training

Cybersecurity industry leaders Bryson Bort, CEO of SCYTHE and Chairman of GRIMMBeau Woods, Cyber Safety Innovation Fellow at The Atlantic Council and leader in the volunteer I Am The Cavalry initiative, Larry Vandenaweele, Cyber Security Manager at PwC Australia, and Thomas VanNorman, Director of Application Engineering at Veracity Industrial Networks, announced the launch of the non-profit Industrial Control System (ICS) Village. The ICS Village is a traveling interactive experience that showcases ICS technologies and highlights the security controls that enable them to power the secure operations of chemical processing plants, pulp and paper manufacturing facilities, power generation systems, oil and gas processing, telecommunications networks and other elements of critical infrastructure. The village is designed to increase awareness and educate the public on protecting these systems and facilities. The ICS Village is also developing an engaging digital presence to broaden the reach beyond live events… [READ MORE]

 

(Feb. 8, 2018)
WiFi Routers Riddled With Holes: Report

Most WiFi router vendors have not patched numerous firmware vulnerabilities discovered more than two years ago, according to a report Insignary released on Tuesday.

OEM firmware built into WiFi routers use open source components that contain numerous known security vulnerabilities that can be exploited by hackers, it notes… [READ MORE]

 

(Jan. 31, 2018)
CyberWire Daily Podcast Covers Cryptonite’s Health Care Cyber Research Report for 2017

In today’s podcast we hear that the Dutch financial sector is well on its way to recovering from the recent DDoS wave, which could be the work of anyone from teenaged skids to some nation’s intelligence service. Lizard Squad may have a connection to Mirai. The reptiles are also getting into the coin mining business. Patient phishing relieves IOTA cryptocurrency users of the contents of their wallets. UK’s Snooper’s Charter smacked down by High Court. US House Intelligence Committee votes to release classified memo on surveillance. Jonathan Katz from UMD on the “fuzzing” of private healthcare information. Guest is Michael Simon from Cryptonite with results from their 2018 Health Care Cyber Report. US military personnel get an OPSEC lesson on Strava… [READ MORE]

(Jan. 26, 2018)
Ransomware Actors Cut Loose on Health Care Organizations

An attack on Allscripts last week that knocked out EHR services to 1,500 clients is the third reported incident just this month.

 A string of recent attacks suggests that ransomware operators are sharply ramping up their focus on healthcare organizations.

Last week, electronic health record (EHR) provider Allscripts became at least the third organization in the health sector to get hit by ransomware since the start of this year… [READ MORE]

 

(Jan. 24, 2018)
Cryptonite’s Five Cyberthreat Predictions for 2018

2017 was the year cyber attacks grew substantially in industries such as health care, banking, manufacturing and government. 2018 will be the year that cyber attackers bring increasing levels of scale and automation to their attacks.  It is our view that defenders have raised the bar and the cyber attackers will respond in kind. The most visible vulnerability use cases still do not have adequate protection – attackers will accelerate their pace of compromise and data theft. The Cryptonite team analyzes trends and watches the data that flows into our security operation center to identify emerging cyber threat trends. This is our view of the imminent 2018 cyber threat onslaught… [READ MORE]

 

(Jan. 05, 2018) 
2017 US Healthcare Breaches Involving Ransomware Increased 89% Year-Over-Year

Cryptonite, a leader in moving target cyber defense, today announced the availability of its “2017 Health Care Cyber Research Report,” which shares the company’s findings on healthcare cyberattacker activity in 2017.

2017 has been a very challenging year for healthcare institutions as these organizations remain under sustained attack by cyberattackers that continue to target their networks through the use of well understood vulnerabilities. This end of year research conducted by Cryptonite indicates that there were a total of 140 data breach events characterized and reported to HHS/OCR as IT/Hacking in 2017 representing a 23.89% increase over the 113 IT/Hacking events reported in 2016… [READ MORE]

 

Cyber Attack Watch

Read about the cyber attacks that have been making headlines

 

(April 3, 2018)
Major U.S. pipeline hit by cyberattack on transaction software

A supply chain cyberattack has disrupted a customer transaction service for a network of U.S. natural gas companies, according to multiple news reports.

It affected a software platform, developed by a company named Energy Services Group LLC, that is used to process customer transactions, according to Bloomberg News. Such data-exchange software is widely used in the gas industry, though the attack was limited to the Energy Services platform… [READ MORE]

 

(March 29, 2018)
One of the Biggest and Most Boring Cyberattacks Against an American City Yet

Want to hear a boring story?

I can’t submit an expense report for a recent out-of-town work trip. I’ve got all the receipts, except one from long-term parking at the Atlanta airport. A sensor lets me in and out of the parking lot there, and my account gets charged automatically. Later, I can download a receipt from a website, which I submit to accounting at my university, which creates an expense report, which eventually processes a reimbursement… [READ MORE]

 

(March 10, 2018)
U.S. More Vulnerable To Weaponized Cyberattacks Than You Think

Until Americans get more serious about cybersecurity, the United States remains extraordinarily vulnerable to attacks from enemy nations–and even individual hackers–on our electric grid, hospitals, infrastructure, and companies large and small.

That was the sobering takeaway from the War Games: From Battlefield to Ballot Box panel of experts at South by Southwest Friday… [READ MORE]

 

(February 21, 2018)
Global Cybercrime Costs $600 Billion Annually: Study

The annual cost of cybercrime has hit $600 billion worldwide, fueled by growing sophistication of hackers and proliferation of criminal marketplaces and cryptocurrencies, researchers said Wednesday.

A report by the security firm McAfee with the Center for Strategic and International Studies found theft of intellectual property represents about one-fourth of the cost of cybercrime in 2017, and that other attacks such as those involving ransomware are growing at a fast pace… [READ MORE]

 

Cryptonite Announcements & News

(April 5, 2018) 
Cryptonite and MDISS Partner to Reveal Cybersecurity Solutions in the “Health Care Cybersecurity Best Practices” Report

Cryptonite, a leader in moving target cyber defense, and MDISS, the Medical Device Innovation, Safety and Security Consortium, released today the joint “Health Care Cybersecurity Best Practices” report, which provides a snapshot of some of the current cybersecurity environments in health care, shares important insights into cyber threat related trends in these environments, and identifies recent technology solutions that can help maintain the integrity of medical devices that are installed and connected in health care network environments… [READ MORE]

 

(Feb. 27, 2018)
Industry Leaders Launch Non-Profit ICS Village to Raise Awareness of Industrial Control System Security Issues and Provide Hands-On Training

Cybersecurity industry leaders Bryson Bort, CEO of SCYTHE and Chairman of GRIMMBeau Woods, Cyber Safety Innovation Fellow at The Atlantic Council and leader in the volunteer I Am The Cavalry initiative, Larry Vandenaweele, Cyber Security Manager at PwC Australia, and Thomas VanNorman, Director of Application Engineering at Veracity Industrial Networks, announced the launch of the non-profit Industrial Control System (ICS) Village. The ICS Village is a traveling interactive experience that showcases ICS technologies and highlights the security controls that enable them to power the secure operations of chemical processing plants, pulp and paper manufacturing facilities, power generation systems, oil and gas processing, telecommunications networks and other elements of critical infrastructure. The village is designed to increase awareness and educate the public on protecting these systems and facilities. The ICS Village is also developing an engaging digital presence to broaden the reach beyond live events… [READ MORE]

 

(Feb. 8, 2018)
WiFi Routers Riddled With Holes: Report

Most WiFi router vendors have not patched numerous firmware vulnerabilities discovered more than two years ago, according to a report Insignary released on Tuesday.

OEM firmware built into WiFi routers use open source components that contain numerous known security vulnerabilities that can be exploited by hackers, it notes… [READ MORE]

 

(Jan. 31, 2018)
CyberWire Daily Podcast Covers Cryptonite’s Health Care Cyber Research Report for 2017

In today’s podcast we hear that the Dutch financial sector is well on its way to recovering from the recent DDoS wave, which could be the work of anyone from teenaged skids to some nation’s intelligence service. Lizard Squad may have a connection to Mirai. The reptiles are also getting into the coin mining business. Patient phishing relieves IOTA cryptocurrency users of the contents of their wallets. UK’s Snooper’s Charter smacked down by High Court. US House Intelligence Committee votes to release classified memo on surveillance. Jonathan Katz from UMD on the “fuzzing” of private healthcare information. Guest is Michael Simon from Cryptonite with results from their 2018 Health Care Cyber Report. US military personnel get an OPSEC lesson on Strava… [READ MORE]

(Jan. 26, 2018)
Ransomware Actors Cut Loose on Health Care Organizations

An attack on Allscripts last week that knocked out EHR services to 1,500 clients is the third reported incident just this month.

 A string of recent attacks suggests that ransomware operators are sharply ramping up their focus on healthcare organizations.

Last week, electronic health record (EHR) provider Allscripts became at least the third organization in the health sector to get hit by ransomware since the start of this year… [READ MORE]

 

(Jan. 24, 2018)
Cryptonite’s Five Cyberthreat Predictions for 2018

2017 was the year cyber attacks grew substantially in industries such as health care, banking, manufacturing and government. 2018 will be the year that cyber attackers bring increasing levels of scale and automation to their attacks.  It is our view that defenders have raised the bar and the cyber attackers will respond in kind. The most visible vulnerability use cases still do not have adequate protection – attackers will accelerate their pace of compromise and data theft. The Cryptonite team analyzes trends and watches the data that flows into our security operation center to identify emerging cyber threat trends. This is our view of the imminent 2018 cyber threat onslaught… [READ MORE]

 

(Jan. 05, 2018) 
2017 US Healthcare Breaches Involving Ransomware Increased 89% Year-Over-Year

Cryptonite, a leader in moving target cyber defense, today announced the availability of its “2017 Health Care Cyber Research Report,” which shares the company’s findings on healthcare cyberattacker activity in 2017.

2017 has been a very challenging year for healthcare institutions as these organizations remain under sustained attack by cyberattackers that continue to target their networks through the use of well understood vulnerabilities. This end of year research conducted by Cryptonite indicates that there were a total of 140 data breach events characterized and reported to HHS/OCR as IT/Hacking in 2017 representing a 23.89% increase over the 113 IT/Hacking events reported in 2016… [READ MORE]