LATEST POST
Likely Chinese Hackers Infiltrated Asian Telecom for 4 Years
BankInfoSecurity reports: An apparent Chinese cyberespionage operation lurked inside the network of an Asian telecom for four years, camouflaging its presence through nested encryption and lightweight web shells. Incident response firm Sygnia has uncovered the operation, dubbing the threat actor “Weaver Ant.” It exhibits several characteristics of a Chinese nation-state threat actor, including a wide reliance on […]
Defense Contractor MORSECORP Inc. Agrees to Pay $4.6 Million to Settle Cybersecurity Fraud Allegations
Federal contractors who claim that they comply with federal cybersecurity standards better do so, or they may be charged under the False Claims Act, as we saw with the Health Net Federal Services settlement last month and now with Morsecorp. The Department of Justice announced today: Source: U.S. Department of Justice
At least 9000 court documents exposed in major NSW data breach
MSN reports: Cybercrime detectives are investigating a “major data breach” of the NSW court’s website involving the leaking of 9000 sensitive court documents, including apprehended violence orders [AVO]. The breach, which was discovered on Tuesday and referred to the State Crime Command’s Cybercrime Squad, impacted the NSW Online Registry Website, an online platform which provides […]
Delete your DNA from 23andMe right now
The Washington Post reports: If you’re one of the 15 million people who shared your DNA with 23andMe, it’s time to delete your data. The genetic information company, best known for its saliva test kits, announced Sunday that it is headed to bankruptcy court to sell its assets. And 23andMe’s financial distress prompted California Attorney General Rob […]
The Trump Administration Accidentally Texted Me Its War Plans
Unbelievable. And this wasn’t a one-time human error. It went on over time. Jeffrey Goldberg of The Atlantic reports: The world found out shortly before 2 p.m. eastern time on March 15 that the United States was bombing Houthi targets across Yemen. I, however, knew two hours before the first bombs exploded that the attack […]
23andMe’s genes not strong enough to avoid Chapter 11
The Register reports: Beleaguered DNA testing biz 23andMe – hit by a massive cyber attack in 2023 – is filing for bankruptcy protection in the US following years of financial uncertainty. It said that Chapter 11 proceedings were initiated in the US Bankruptcy Court for the Eastern District of Missouri on Sunday, and the court will oversee […]
Trump Administration Begins Shifting Cyberattack Response to States
The Wall Street Journal reports: The Trump administration wants state and local governments to play a bigger role in protecting water utilities, ports and other critical infrastructure from cyberattacks. In an executive order signed Tuesday, President Trump directed White House senior security advisers to draw up a national resilience plan to protect critical infrastructure that […]
Coinbase was primary target of recent GitHub Actions breaches
BleepingComputer reports: Researchers have determined that Coinbase was the primary target in a recent GitHub Actions cascading supply chain attack that compromised secrets in hundreds of repositories. According to new reports from Palo Alto Unit 42 and Wiz, the attack was carefully planned and began when malicious code was injected into reviewdog/action-setup@v1 GitHub Action. It is unclear how the breach […]