RSI Security

Category: Cyber Attacks

Stay updated on cyber attacks worldwide. Explore expert insights, threat trends, and prevention strategies to protect your business from evolving cybersecurity risks.

  • 5 Cyber Security Threats In The Cannabis Industry

    5 Cyber Security Threats In The Cannabis Industry

    The legal marijuana industry is expected to grow exponentially over the next few years. This is spurred not only by the legalization of recreational marijuana in many states in the US as well as in countries like Canada, but also the growing adoption of cannabis as a pharmaceutical product.

    According to the State of the Legal Cannabis Markets report from BDS Analytics and Arcview Market Research, legal pot sales will hit $40.6 billion in 2024. This represents a 24.5 percent growth over the period 2018 to 2024. 

    The burgeoning cannabis retail industry is, therefore, a prime target for cybercriminals who look to steal valuable and sensitive information ranging from credit card information, trade secrets, and personally identifiable information (PII)

    Aside from the consumer information they store and manage, online cannabis retailers are being targeted because many of them have yet to incorporate cybersecurity practices.  Small to medium-sized online marijuana retailers are also highly vulnerable to cyberattacks because they normally don’t have the resources to hire an IT staff who can implement security measures to mitigate cybersecurity risks. 

    (more…)

  • SamSam shows up again with a ransom note

    SamSam shows up again with a ransom note

    Last week, the Colorado Department of Transportation was hit with the SamSam ransomware forcing it to shut down 2000 computers across its system. Believed to be a new variant of the previous SamSam ransomware, according to Talos Intelligence at Cisco, this ransomware has been observed across multiple industries including Government, Healthcare and ICS. These attacks do not appear to be highly targeted, and appear to be more opportunistic in nature. As we all know these ransomware can cripple critical systems such as those in the healthcare services impacting patients across the world.

    (more…)

  • International Bank Cyber Heist via SWIFT…again…

    International Bank Cyber Heist via SWIFT…again…

    Indias City Union Bank, a small private lender, said on Feb 18, 2018 that cyber criminals had hacked its systems and transferred nearly $2 million through three unauthorized remittances to lenders overseas via the SWIFT financial platform. Chief Executive Officer N. Kamakodi called it a conspiracy involving multiple countries, and added the lender was still investigating how it had happened. The bank had discovered the three fraudulent remittances, which were sent via correspondent banks to accounts in Dubai, Turkey and China.

    (more…)

  • Cyber attacks at the 2018 PyeongChang Winter Olympics

    Cyber attacks at the 2018 PyeongChang Winter Olympics

    A cyberattack paralyzed internet networks at the opening ceremony of the 2018 Pyeongchang Winter Olympics. Several U.S. cybersecurity firms have uncovered a computer virus named Olympic Destroyer that was likely used in an attack.

    (more…)

  • Meltdown & Spectre Follow Up – Specific PCI DSS Action Items

    Following up on our recent alert regarding the Meltdown and Spectre security flaws, RSI now provides subsequent information and recommendations to our clients and all organizations needing to adhere to PCI compliance requirements.

    (more…)

  • RSI Alert: Meltdown & Spectre CPU Security Flaws

    RSI Alert: Meltdown & Spectre CPU Security Flaws

    Bottom Line:

    Researchers recently discovered two design flaws in nearly all CPUs manufactured by Intel, AMD, and ARM since 1995 that bypass system protections and potentially allow attackers to steal sensitive information from the memory of running applications. Sensitive data such as passwords, browser cookies, emails, photos, documents, etc. contained in devices (PCs, servers, iphones, ipads) that use those CPUs are all potentially at risk.

    (more…)

  • Are your Vendors the Weak Link in your Company’s Security?

    Are your Vendors the Weak Link in your Company’s Security?

    Identifying and understanding data security Vulnerabilities is fundamental to mitigate overall risk factors that confront your company on a daily basis. While you may have fortified your cyber defenses against viruses with AV or Malware software, and protected your perimeter from external breaches with an up to date hardware firewall, its also vital to understand the threats from within.

    (more…)

  • Has your Wi-Fi Security been KRACK’d?

    Has your Wi-Fi Security been KRACK’d?

    Since its news release a few days ago, the tech media has made considerable hay of the threat and implications of the Wi-Fi Protected Access II (WPA2) protocol flaw / attack known as KRACKKey Reinstallation AttaCK. And while the vulnerability does reveal legitimate security concerns, the real-world implications arent as panic-inducing as its been made out to be.

    (more…)

  • RSI Analysis: Equifax breach a watershed moment, Cybersecurity now Material concern

    As of October 4, ever more damning information continues to surge out of the Equifax investigation. The total number of affected American consumers has hit 146 million, with the former-CEO laying blame on a single employee for not implementing a security patch that would have plugged a vulnerability in Apache software (which itself was patched by the vendor 2 months prior).

    (more…)

  • PII in the Sky

    PII in the Sky

    Affecting 143 million people, the recent Equifax data breach might on the surface pale in comparison to recent Yahoo breaches that exposed personal details for ~1.5 BILLION of its users. What makes the Equifax incident perhaps the most consequential and severe hack of all time, though, is the quality of the information extracted from the credit reporting company.

    (more…)