NBC News: Hackers are leaking children’s data — and there’s little parents can do

NBC News: Hackers are leaking children’s data — and there’s little parents can do. “Some schools contacted about the leaks appeared unaware of the problem. And even after schools are able to resume operations following an attack, parents have little recourse when their children’s information is leaked. Some of the data is personal, like medical conditions or family financial statuses. Other pieces of data, such as Social Security numbers or birthdays, are permanent indicators of who they are, and their theft can set up a child for a lifetime of potential identity theft.”

Inside Genesis: The market created by cybercriminals to make millions selling your digital identity (CBS News)

CBS News: Inside Genesis: The market created by cybercriminals to make millions selling your digital identity. “The Genesis Market is an easy-to-use online shop that sells login credentials, cookies and device fingerprints, website vulnerabilities and other sensitive data that help hackers thwart security protocols. Security researchers warn that the market, along with other criminal sites, have become an important tool for hacking organizations to carry out these attacks.”

Washington Post: Howard University cancels online, hybrid classes as it investigates alleged ransomware attack

Washington Post: Howard University cancels online, hybrid classes as it investigates alleged ransomware attack. “Online and hybrid courses will remain suspended Wednesday at Howard University following what officials have described as a ransomware cyberattack. But hands-on courses — such as lab classes or clinicals for nursing students — will resume, officials said Tuesday afternoon.”

Ars Technica: Why ransomware hackers love a holiday weekend

Ars Technica: Why ransomware hackers love a holiday weekend. “Really, ransomware hackers love regular weekends, too. But a long one? When everyone’s off carousing with family and friends and studiously avoiding anything remotely office-related? That’s the good stuff. And while the trend isn’t new, a joint warning issued this week by the FBI and the Cybersecurity and Infrastructure Security Agency underscores how serious the threat has become.”

10 Boston: New Hampshire Town Loses $2.3M in Taxpayer Money to Cyberattack

10 Boston: New Hampshire Town Loses $2.3M in Taxpayer Money to Cyberattack. “Peterborough, a town of just over 6,000 residents, is located in southern New Hampshire, about 35 miles west of Manchester. [Tyler] Ward and [Nicole] MacStay said town officials learned on July 26 that the ConVal School District, which serves Peterborough and eight other surrounding towns, had not received its monthly $1.2 million transfer form the town.”

Wanted: Disgruntled Employees to Deploy Ransomware (Krebs on Security)

Krebs on Security: Wanted: Disgruntled Employees to Deploy Ransomware. “Criminal hackers will try almost anything to get inside a profitable enterprise and secure a million-dollar payday from a ransomware infection. Apparently now that includes emailing employees directly and asking them to unleash the malware inside their employer’s network in exchange for a percentage of any ransom amount paid by the victim company.”

Bleeping Computer: Windows PetitPotam vulnerability gets an unofficial free patch

Bleeping Computer: Windows PetitPotam vulnerability gets an unofficial free patch. “A free unofficial patch is now available to block attackers from taking over domain controllers and compromising entire Windows domains via PetitPotam NTLM relay attacks. The PetitPotam attack vector that forces Windows machines to authenticate against threat actors’ malicious NTLM relay servers using the Microsoft Encrypting File System Remote Protocol (EFSRPC) was disclosed last month by security researcher Gilles Lionel (aka Topotam).”

Prometheus TDS: The $250 service behind recent malware attacks (Bleeping Computer)

Bleeping Computer: Prometheus TDS: The $250 service behind recent malware attacks. “Security researchers investigating multiple malware distribution campaigns found that an underground traffic distribution service called Prometheus is responsible for delivering threats that often lead to ransomware attacks. Among the malware families that Prometheus TDS has dished out so far are BazarLoader, IcedID, QBot, SocGholish, Hancitor, and Buer Loader, all of them commonly used in intermediary attack stages to download more damaging payloads.”

#DEFCON: A Bad eBook Can Take Over Your Kindle (or Worse) (InfoSecurity Magazine)

InfoSecurity Magazine: #DEFCON: A Bad eBook Can Take Over Your Kindle (or Worse). “The primary purpose of the Kindle is to enable users to read books. Slava Makkaveev, security researcher at Check Point Software Technologies, had another idea, though; he wanted to see if he could load a book that would exploit the Kindle. At the DEF CON 29 conference, Makkaveev outlined the process by which he was able to exploit a Kindle with a malicious eBook that he was able to create.”

CNET: US taps tech giants to help fight ransomware, cyberattacks

CNET: US taps tech giants to help fight ransomware, cyberattacks. “The initiative, called the Joint Cyber Defense Collaborative, was unveiled Thursday by Jen Easterly, director of the Cybersecurity and Infrastructure Security Agency, which falls under the Department of Homeland Security. The effort, reported earlier by The Wall Street Journal, will initially focus on combating ransomware and developing a framework to deal with cyberattacks that affect providers of cloud services.”