Security News
















             Cyberthreats targeting municipalities are on the rise - Through the first half of 2019, a growing
             number of municipalities across the US were hit with crippling ransomware attacks, while several
             large companies disclosed data breaches that exposed more than 625 million records. The report,
             based on global data compiled by AppRiver’s cybersecurity analyst team, delves into what is being
             considered a record year for disruptive attacks that appear to be affecting municipalities at an
             alarming rate. In 2018, AppRiver analysts stated that they “expect to see more disruptive
             cyberattack events committed by nation states that masquerade as financially motivated attacks.”
                    Source: https://www.helpnetsecurity.com/2019/07/23/cyberthreats-targeting-
                    municipalities/



             This firmware flaw was bad enough, but then researchers looked at the supply chain - When
             researchers first found critical vulnerabilities in the firmware of certain Lenovo computer servers, it
             looked like a fairly straightforward issue. The problem, however, involved far more than the Hong
             Kong-based PC giant. The vulnerabilities were in the firmware of baseboard management controllers
             (BMC), the small processors used to remotely manage servers at an organization. The flaws could
             allow an attacker to run arbitrary code within the BMCs to retain persistent access to a computer
             system, or to “brick” the BMC entirely, rendering it inoperable. Those facts alone were cause for
             concern, but specialists at hardware-security company Eclypsium discovered a bigger story. The
             firmware in question was actually sourced from another company — Ohio-based Vertiv — and it was
             present in servers made by at least seven other vendors.

                    Source: https://www.cyberscoop.com/lenovo-firmware-flaw-eclypsium-research/



             Every minute, $2.9 million is lost to cybercrime - Cybercriminals cost the global economy $2.9
             million every minute last year, a total of $1.5 trillion, according to RiskIQ. op companies pay $25 per
             minute due to security breaches. Additional malicious activity includes:

                    • $1,930: the cost of hacks on cryptocurrency exchanges every minute

                    • $17,700: lost from phishing attacks per minute
                    • $22,184: the projected by-the-minute cost of global ransomware events in 2019

                    • 8,100: identifier records compromised every minute
                    • 7: malicious redirectors detected each minute

                    • 2.4: phish traversing the internet per minute
                    • 0.32: blacklisted apps by-the-minute

                    • 0.21: Magecart attacks detected every minute
             Source: https://www.helpnetsecurity.com/2019/07/25/cybercrime-economy-cost/


                                                    www.accumepartners.com                                            5