Search Blog for

This Week in Application Security News, March 11-16, 2018

News highlights this week: US sanctions Russia over malicious cyber activity, cryptojacking threat continues to rise and examining the real threat of accidental DDoS attacks.

US sanctions Russia over NotPetya and election interference

The U.S. Treasury Department announced new economic sanctions on the Russian Federation and specific individuals this week in connection with malicious cyber activities, including election meddling and the NotPetya attack last year.

DHS warns of new Russia hacks as US sanctions Russia over election interference (Ars Technica, Mar. 15)

US Treasury Department Sanctions Russians Over NotPetya, Election Meddling (InfoSecurity Magazine, Mar. 15)

DHS, FBI name Russia in DragonFly 2.0 attacks on critical infrastructure (SC Magazine, Mar. 15)

Trump Administration Slaps Sanctions on Russian Hackers, Operatives (Dark Reading, Mar. 15)

DDoS attacks and cryptojacking

Cybercriminals spotted hiding cryptocurrency mining malware in forked projects on GitHub (ZDNet, Mar. 15)

Monero cryptojacking malware uses limited amount of CPU power in order to evade infections being detected.

Cryptojacking Threat Continues to Rise (Dark Reading, Mar. 15)

Unauthorized cryptocurrency mining can consume processing power and make apps unavailable as well as lead to other malware.

Oopsy DDoSy: Accidental DDoS Attacks Causing Major Grief (Business Computing World, Mar. 14)

Accidental DDoS can happen just as easily as the malicious variety and the end result is the same – site or service outages and frustrated users who start questioning their website or brand loyalty.

In other news

(ISC)2 Report: Glaring Disparity in Diversity for US Cybersecurity (Dark Reading, Mar. 15)

Cybersecurity Incident Response Still Major Issue (InfoSecurity Magazine, Mar. 15)

3 areas in which CISOs are becoming more proactive (CSO Online, Mar. 13)