Elaborate Honeypot 'Factory' Network Hit with Ransomware, RAT and Cryptojacking

[TechWeb]( Follow Dark Reading: [RSS]( January 22, 2020 LATEST SECURITY NEWS & COMMENTARY [Elaborate Honeypot 'Factory' Network Hit with Ransomware, RAT, and Cryptojacking]( A fictitious industrial company with phony employees personas, website, and PLCs sitting on a simulated factory network fooled malicious hackers - and raised alarms for at least one white-hat researcher who stumbled upon it. [Microsoft, DHS Warn of Zero-Day Attack Targeting IE Users]( Software firm is "aware of limited targeted attacks" exploiting a scripting issue vulnerability in Internet Explorer 9, 10, and 11 that previously has not been disclosed. [New Ransomware Tactic Shows How Windows EFS Can Aid Attackers]( Researchers have discovered how ransomware can take advantage of the Windows Encrypting File System, prompting security vendors to release patches. [China-Based Cyber Espionage Group Reportedly Behind Breach at Mitsubishi Electric]( Personal data on over 8,100 individuals and confidential business information likely exposed in June 2019 incident. [Data Awareness Is Key to Data Security]( Traditional data-leak prevention is not enough for businesses facing today's dynamic threat landscape. [Ransomware Upgrades with Credential-Stealing Tricks]( The latest version of the FTCode ransomware can steal credentials from five popular browsers and email clients. [Nearly 75% of SD-WAN Owners Lack Confidence Post-Digital Transformation]( More businesses think SD-WAN will reduce WAN costs, but only 37% think SD-WANs will help defend against malware and other threats. [FireEye Buys Cloudvisory]( The purchase is intended to bring new cloud capabilities to the FireEye Helix security platform. [MORE NEWS & COMMENTARY]( HOT TOPICS [7 Ways to Get the Most Out of a Penetration Test]( You'll get the best results when you're clear on what you want to accomplish from a pen test. [Massive Oracle Patch Reverses Company's Trend Toward Fewer Flaws]( Following a year that saw the fewest number of vulnerabilities reported since 2015, Oracle's latest quarterly patch fixes nearly 200 new vulnerabilities. [Active Directory Needs an Update: Here's Why]( AD is still the single point of authentication for most companies that use Windows. But it has some shortcomings that should be addressed. [MORE]( EDITORS' CHOICE [7 Tips for Infosec Pros Considering A Lateral Career Move]( Looking to switch things up but not sure how to do it? Security experts share their advice for switching career paths in the industry. [Avoid That Billion-Dollar Fine: Blurring the Lines Between Security and Privacy]( While doing good for the user is the theoretical ideal, the threat of fiscal repercussions should drive organizations to take privacy seriously. That means security and data privacy teams must work more closely. NEW FROM THE EDGE [The Y2K Boomerang: InfoSec Lessons Learned from a New Date-Fix Problem]( We all make assumptions. They rarely turn out well. A new/old date problem offers a lesson in why that's so. Tech Resources - [NetFlow vs Packet Data]( - [[Exclusive InformationWeek IT Trend Report] The Cloud Gets Ready for the 20's]( - [Definitive Guide to Securing DevOps]( - [What to Expect When You're Expecting a Data Breach: End of Year Report]( - [How SBCs Can Protect Your UC]( - [SANS Cyber Threat Intelligence Survey]( - [The Value of Threat Intelligence]( [ACCESS TECH LIBRARY NOW]( - [5 Steps to Integrate SAST into the DevSecOps Pipeline]( Join us as we walk you through the challenges and benefits of integrating a SAST tool into your DevSecOps pipeline and how we've helped other organizations with this process. - [Developing and Managing an Endpoint Security Strategy for Your Enterprise]( In this webinar, experts offer advice and recommendations on how to build an endpoint security strategy that works across all of the devices that the end user might employ. You'll also get insight on how to develop a consistent endpoint ... [MORE WEBINARS]( FEATURED REPORTS - [Can You Spare 10-12 Mins to Help Us Out with a Survey on Tech Trends?]( Help InformationWeek with a 10 to 12 minute survey about IT innovations, decisions, and staffing challenges. We want to hear about how your organization is embracing today's technology trends. The results of the survey will appear in an upcoming in-depth report, which ... - [Got 7 Minutes? Dark Reading Needs Your Help With Our Survey on Incident Response]( [MORE REPORTS]( CURRENT ISSUE [The Year in Security: 2019]( [DOWNLOAD THIS ISSUE]( [SUBSCRIBE NOW]( [BACK ISSUES]( | [MUST READS]( | [TECH DIGEST]( PRODUCTS & RELEASES [Tripwire Expands Industrial Security Capabilities, Launches Industrial Appliance Line, Joins ISA Global Security Alliance]( [California Fraudster Sentenced In Maryland To Four Years In Federal Prison For A Credit Card Fraud Scheme With Losses Of More Than $1.365 Million]( [Florida Man Sentenced in ATM 'Cash-out' Scheme]( [MORE PRODUCTS & RELEASES]( Dark Reading Daily -- Published By [Dark Reading]( Informa Tech 303 Second St., Suite 900 South Tower, San Francisco, CA 94107 To update your profile, change your e-mail address, or unsubscribe, [click here.]( To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:customerservice_informationhub@techweb.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2020]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:customerservice_informationhub@techweb.com)