Daily Cybersecurity Roundup, September 18, 2020

Ransomware attacks continue to plague K–12 school districts nationwide. In the latest incident, a ransomware attack at a California school district forced it to cancel its online classes while affecting thousands of students. In other headlines, the U.S. Department of Justice (DoJ) charged three Iranian hackers for breaching and stealing data from professionals working in aerospace and satellite technology firms. On that note, let’s review the top ten cybersecurity highlights from the past 24 hours.

01

A ransomware attack at the Newhall School District has disabled the district’s servers and email system, halting distance learning for 6,000 elementary school students.

02

The DoJ indicted three Iranian nationalsa member of the Revolutionary Guard and two others—for stealing the identities of individuals working in aerospace and satellite technology firms in the U.S.

03

Cofense uncovered a phishing campaign that impersonates a security awareness training reminder email from KnowBe4 and attempts to steal Outlook credentials and other personal information.

04

National Informatics Centre, the Indian government's nodal agency responsible for securing critical cyber infrastructure, was hit by a malware attack affecting around 100 systems.

05

Check Point reported about RampantKitten, an Iranian hacker group, that steals files from KeePass and Telegram accounts of Iranian expats and dissidents.

06

Mozilla announced to shut down Firefox Send, its end-to-end encrypted file-sharing service, due to its misuse by malware operators.

07

Twitter will be implementing stringent account security measures for a range of prominent political figures and celebrities, ahead of the U.S. presidential election.

08

The U.S. Department of Commerce tabled a plan to bar people in the country from downloading Chinese-owned messaging app WeChat and video-sharing app TikTok, starting September 20, due to national security reasons.

09

Avertium, a managed security and consulting services company, acquired 1440 Security, a threat protection and cyber-risk assessment platform.

10

JupiterOne, a cyber asset management firm, raised $19 million in a Series A round led by Bain Capital Ventures, with additional investment from Rain Capital, LifeOmic, and individual investors.

Get the Daily Cybersecurity Roundup delivered to your email!