Geek-Guy.com

Category: North America

Analyze the latest North American cybersecurity trends, from critical infrastructure protection to evolving threat actor tactics. Get expert insights on regional data security, identity management, and the impact of AI on digital defense across the U.S. and Canada.

Breaking News, cyber crime, Global Security News, hacking, malware, North America

ATM Jackpotting ring busted: 54 indicted by DoJ

The U.S. Department of Justice has indicted 54 individuals over a multi-million-dollar ATM jackpotting fraud scheme. U.S. DoJ indicted 54 people for a nationwide ATM jackpotting scheme that stole millions via malware. The case links the crimes to the cybercrime group Tren de Aragua, including charges of fraud, money laundering, and material support to a…

Read more →

Australia, Canada, Cybercrime, Cybersecurity, Global Security News, North America, Ransomware

Ukrainian national pleads guilty to Nefilim ransomware attacks

Artem Aleksandrovych Stryzhak, a 35-year-old Ukrainian national, pleaded guilty Friday to multiple crimes stemming from his involvement in a string of ransomware attacks targeting U.S. and Europe-based organizations from mid 2018 to late 2021. He faces up to 10 years in jail for conspiracy to commit fraud, including extortion.  Stryzhak was arrested in Spain in…

Read more →

doge, Global Security News, Latest Warnings, Ne'er-Do-Well News, North America, The Coming Storm

Dismantling Defenses: Trump 2.0 Cyber Year in Review

The Trump administration has pursued a staggering range of policy pivots this past year that threaten to weaken the nation’s ability and willingness to address a broad spectrum of technology challenges, from cybersecurity and privacy to countering disinformation, fraud and corruption. These shifts, along with the president’s efforts to restrict free speech and freedom of…

Read more →

Breaking News, Global Security News, hacking, hacking news, information security news, North America, Security

A cyber attack hit Petróleos de Venezuela (PDVSA) disrupting export operations

A cyber attack hit Petróleos de Venezuela (PDVSA), Venezuela’s state-owned oil company, over the weekend, disrupting its export operations. Venezuela’s state oil company PDVSA was hit by a cyberattack over the weekend that disrupted export operations. The company says the incident only affected some administrative systems and did not impact operations. “Thanks to the expertise…

Read more →

Global Security News, North America

Amazon Exposes Years-Long GRU Cyber Campaign Targeting Energy and Cloud Infrastructure

Amazon’s threat intelligence team has disclosed details of a “years-long” Russian state-sponsored campaign that targeted Western critical infrastructure between 2021 and 2025. Targets of the campaign included energy sector organizations across Western nations, critical infrastructure providers in North America and Europe, and entities with cloud-hosted network infrastructure. The activity has

Read more →

AI, Artificial Intelligence (AI), Global Security News, Government, North America, Technology

AI is causing all kinds of problems in the legal sector 

The American Bar Association believes the use of artificial intelligence in the legal sector is eroding key procedures, documentary records and evidence relied on to establish ground-level truth in the court system. In a report released this month the ABA, which sets ethical standards for the legal profession and oversees the accreditation of roughly 400,000…

Read more →

Federal Bureau of Investigation (FBI), Global Security News, Government, North America, Policy, privacy

Warrant requirements, Democratic worries could factor into spy law renewal debate

A fresh effort is mounting in Congress to require federal agents to obtain a warrant before searching a government surveillance database for information about U.S. citizens, as Congress again faces an impending deadline, in four months, to renew a major surveillance law. But there are also signs that renewal of Section 702 of the Foreign…

Read more →

FinCEN, Global Security News, Guest blog, North America, Ransomware

Ransomware may have extorted over $2.1 billion between 2022-2024, but it’s not all bad news, claims FinCEN report

A new report from the United States’s Financial Crimes Enforcement Network (FinCEN) has shone a revealing light on the state of the criminal industry of ransomware. The report, which examines ransomware incidents from 2022 to 2024, reveals that attackers extorted more than $2.1 billion over the three-year period. Yes, that number is enormous – but…

Read more →

critical infrastructure, Cybercrime, Global Security News, Government, North America, Threats

US charges hacker tied to Russian groups that targeted water systems and meat plants

The Justice Department has charged a Ukrainian national with conducting cyberattacks on critical infrastructure worldwide as part of two Russian state-sponsored hacking operations that targeted water systems, food processing facilities and government networks across the United States and allied nations. Victoria Eduardovna Dubranova, 33, was arraigned on a second indictment Tuesday after being extradited to…

Read more →

Cybersecurity, Department of Justice (DOJ), Federal Bureau of Investigation (FBI), Global Security News, Government, North America, Threats

Officials offer $10M reward for information on IRGC-linked leader and close associate

The State Department is seeking help to locate a pair of hackers allegedly working for Shahid Shushtari, a malicious cyber unit operating under Iran’s Revolutionary Guard Corps Cyber-Electronic Command. Officials are offering a reward up to $10 million for information about Mohammad Bagher Shirinkar and Fatemeh Sedighian Kashi. “Help us take the smile off their…

Read more →

Artificial Intelligence (AI), Congress, Global Security News, Government, North America, Policy

Defense bill addresses secure phones, AI training, cyber troop mental health

The Defense Department would require that senior leaders have secure mobile phones, that personnel would get cybersecurity training that includes a focus on artificial intelligence and that cyber troops would have access to mental health services under a compromise annual defense policy bill released over the weekend. The deal between House and Senate negotiators on…

Read more →

Cybersecurity, Geopolitics, Global Security News, Government, North America, Policy

Legislation would designate ‘critical cyber threat actors,’ direct sanctions against them

A House Republican introduced legislation Tuesday aimed at deterring cyberattacks against the United States at a time when the Trump administration is prioritizing the punishment of malicious hackers. Rep. August Pfluger, R-Texas, revived legislation he first sponsored in 2022, the Cyber Deterrence and Response Act. The legislation would direct the executive branch to formally designate…

Read more →

APT, Breaking News, Global Security News, hacking, information security news, malware, North America

MuddyWater strikes Israel with advanced MuddyViper malware

Iran-linked threat actor MuddyWater targeted multiple Israeli sectors with a new MuddyViper backdoor in recent attacks. ESET researchers uncovered a new MuddyWater campaign targeting Israeli organizations and one confirmed Egyptian target. The Iran-linked APT group MuddyWater (aka SeedWorm, TEMP.Zagros, Mango Sandstorm, TA450, and Static Kitten) deployed custom tools to evade defenses and maintain persistence. They used a Fooder loader,…

Read more →

Cyberattacks, Cybercrime, Security, Global Security News, North America

Kevin Lancaster Joins the usecure Board to Accelerate North American Channel Growth

Lancaster’s arrival brings significant North American channel experience and expertise, supporting usecure’s ambition to cement its position as the market-leading human risk management solution for MSPs. usecure today announced the appointment of Kevin Lancaster as a Non-Executive Director. Kevin joins usecure with a wealth of experience in the North American channel and a strong background…

Read more →

Cybercrime, Malware, Ransomware, Security, Global Security News, North America

Alliances between ransomware groups tied to recent surge in cybercrime

A seasonal surge in malicious activity combined with alliances between ransomware groups led to a 41% increase in attacks between September and October. Cybercriminal group Qilin continues to be the most active ransomware paddlers, responsible for 170 of 594 attacks (29%) in October, NCC Group reports. Sinobi and Akira followed with 15% of ransomware attacks…

Read more →

Channel Analysis, Global Security News, North America

Panasonic Connect’s Jamil King on 2026 Trends to Watch

As the IT channel heads into 2026, partners face accelerating demands around AI adoption, advanced security, and outcome-driven technology investments. In this Q&A, Jamil King, director of the U.S. Mobility Channel at Panasonic Connect North America, breaks down the top 2026 IT channel trends—from evolving customer expectations to the growing need for integrated, vertical-specific solutions—and…

Read more →

Federal Bureau of Investigation (FBI), Global Security News, Israel, North America, privacy, Technology

NSO Group argues WhatsApp injunction threatens existence, future U.S. government work

NSO Group argued in a court filing this week that the court should pause the permanent injunction preventing it from targeting WhatsApp with its spyware while the company appeals the decision. According to the company, enforcing the injunction would cause irreparable harm to its business and prevent the U.S. government from using its products. Those…

Read more →

Cybersecurity, Federal Communications Commission, Global Security News, North America, Policy, Salt Typhoon

Why Anna Gomez believes the FCC is letting telecoms off easy after Salt Typhoon

The Federal Communications Commission is set to vote Thursday on whether to rescind a set of last-minute Biden administration regulations following a massive Chinese compromise of U.S. telecommunications infrastructure last year. Chair Brendan Carr has called the rule ineffective and unlawful, and with the likely support of newly confirmed commissioner Olivia Trusty, there is a…

Read more →

Congress, Cybersecurity and Infrastructure Security Agency (CISA), Cybersecurity Information Sharing Act, Global Security News, Government, North America, Policy

Information sharing law’s expiration could squander government vulnerability hunting efforts, senator says

Letting a cyber threat data sharing law expire could waste government efforts to find vulnerabilities, since companies would no longer be able to discuss these issues without fear of legal repercussions, a top senator said Tuesday. Sen. Mike Rounds, R-S.D., made his remarks less than a week after the hotly contested legislation to end a…

Read more →

Global Security News, North America

Decoding Binary Numeric Expressions, (Mon, Nov 17th)

In diary entry “Formbook Delivered Through Multiple Scripts“, Xavier mentions that the following line: Nestlers= array(79+1,79,80+7,60+9,82,83,72,69,76,76) decodes to the string POWERSHELL. My tool numbers-to-hex.py is a tool that extracts numbers from text files, and converts them to hexadecimal. Like this: I can then use another tool, hex-to-bin.py to convert the hexadecimal numbers to binary, and…

Read more →

Cybercrime, Cybersecurity, Financial, Global Security News, Government, Money, North America

DOJ lauds series of gains against North Korean IT worker scheme, crypto thefts

The Justice Department notched a few more wins in the fight against North Korean cryptocurrency heists and the regime’s expansive scheme to get remote IT workers hired at U.S. businesses.  Officials’ countermeasures to these schemes, which ultimately launder ill-gotten money to North Korea’s government, involve the targeting of U.S.-based facilitators who provide forged or stolen…

Read more →

Global Security News, North America

Iman Ghodosi Joins Prometheus Group as General Manager, APJ

COMPANY ANNOUNCEMENT:  Prometheus Group, a global leader in enterprise asset management software, has announces the appointment of Iman Ghodosi as General Manager, Asia Pacific & Japan (APJ).  Based in Sydney, Ghodosi brings over 25 years of enterprise software leadership across SAP, Oracle, NetSuite, Zuora, and Backbase, and a proven track record of scaling businesses across APJ…

Read more →

Global Security News, North America

SmartApeSG campaign uses ClickFix page to push NetSupport RAT, (Wed, Nov 12th)

Introduction This diary describes a NetSupport RAT infection I generated in my lab from the SmartApeSG campaign that used a ClickFix-style fake CAPTCHA page. Known as ZPHP or HANEYMANEY, SmartApeSG is a campaign reported as early as June 2024. When it started, this campaign used fake browser update pages. But it currently uses the ClickFix method of fake…

Read more →

Botnet, Breaking News, cyber crime, Cybercrime, Global Security News, malware, North America

New Danabot Windows version appears in the threat landscape after May disruption

DanaBot returns after 6 months with a new Windows variant (v669), marking its comeback after being disrupted by Operation Endgame in May. DanaBot has resurfaced with a new variant (version 669) targeting Windows systems, six months after Operation Endgame disrupted its activity in May, according to Zscaler ThreatLabz. The researchers identified a set of command…

Read more →

Cybercrime, Financial, Geopolitics, Global Security News, North America, Policy, Threats

Google files lawsuit against Lighthouse ‘phishing for dummies’ text scammers

Google on Wednesday filed a lawsuit against pesky text message scammers — like those who flood targets with notices that they have unpaid road tolls, or have a package waiting — in an attempt to disrupt a “phishing for dummies” operation the company accuses of victimizing more than 1 million people. The lawsuit against 25…

Read more →

Global Security News, Guest blog, Law & order, malware, North America, Ransomware

Russian hacker admits helping Yanluowang ransomware infect companies

A Russian hacker accused of helping ransomware gangs break into businesses across the United States is set to plead guilty, according to recently filed federal court documents. 25-year-old Aleksey Olegovich Volkov worked as an “initial access broker”, a cybercriminal specialist who focuses on the earliest stage of an attack: gaining the first foothold inside a…

Read more →

Global Security News, North America, Running an MSP

DataStrike COO on H-1B Visa Concerns & Building Domestic Staff

As H-1B visa costs skyrocket due to recent federal action, many companies are reconsidering their talent sourcing heading into 2026. We spoke with Rob Brown, president and COO at database and cloud services provider DataStrike, about his company’s decision to retain domestic talent and where the market for onshore teams is heading. Why service providers…

Read more →

Global Security News, North America

Honeypot: Requests for (Code) Repositories, (Sat, Nov 8th)

This is just a quick diary entry to report that I saw requests on my honeypot for (code) repositories: /.git/logs/refs/remotes/origin/main /.git/objects/info /.github /.github/dependabot.yml /.github/funding.yml /.github/ISSUE_TEMPLATE /.gitlab/issue_templates /.gitlab-ci /.git-secret /.svnignore /aws/bucket /s3/backup /s3/bucket /s3/credentials So watch out what you publish online when you deploy a repository to your web site.   Didier Stevens Senior handler blog.DidierStevens.com…

Read more →

cisco, Cybercrime, Cybersecurity, Global Security News, North America, Ransomware

Russian national pleads guilty to breaking into networks for Yanluowang ransomware attacks

A 25-year-old Russian national pleaded guilty to multiple charges stemming from their participation in ransomware attacks and faces a maximum penalty up to 53 years in prison. Aleksei Olegovich Volkov, also known as “chubaka.kor,” served as the initial access broker for the Yanluowang ransomware group while living in Russia from July 2021 through November 2022,…

Read more →

A Little Sunshine, Global Security News, Internet of Things (IoT), North America, Web Fraud 2.0

Cloudflare Scrubs Aisuru Botnet from Top Domains List

For the past week, domains associated with the massive Aisuru botnet have repeatedly usurped Amazon, Apple, Google and Microsoft in Cloudflare’s public ranking of the most frequently requested websites. Cloudflare responded by redacting Aisuru domain names from their top websites list. The chief executive at Cloudflare says Aisuru’s overlords are using the botnet to boost…

Read more →