LATEST POST
How Chinese Hackers Graduated From Clumsy Corporate Thieves to Military Weapons
China’s spokespeople keep denying claims by U.S. officials, but U.S. officials have not retracted or backed off at all on their claims about Chinese espionage and cyberattacks. The Wall Street Journal reports: The message from President Biden’s national security adviser was startling. Chinese hackers had gained the ability to shut down dozens of U.S. ports, […]
Tick Tock: You now have less than 30 days from discovery of a breach to notify New Yorkers
New York’s Governor Hochul signed two bills into law in December that modify New York’s breach notification law. One that has already gone into effect replaces the “in the most expedient time” type of language with an actual deadline of 30 days from discovery of a breach but retains an exception for the legitimate needs […]
Apple agrees to pay US$95 million to settle Siri eavesdropping lawsuit
Siri may have sounded benevolent, but was she really recording you without your knowledge or consent and then sharing what she learned? Agence France-Press reports: Apple has agreed to pay US$95 million to settle a lawsuit accusing its digital assistant Siri of listening in on users’ private conversations. The proposed settlement filed in an Oakland, California, […]
Cybercriminals leak stolen data of Rhode Island’s HHS divisions
There’s another update to the situation in Rhode Island, where threat actors called Brain Cipher managed to acquire data from the RIBridges portal that handles certain public services such as the Supplemental Nutrition Assistance Program (SNAP), Medicaid benefits, and health insurance through the state’s marketplace for coverage. The state continues to update its cyber-alert page about […]
Treasury Says Chinese Hackers Remotely Accessed Several Workstations And Unclassified Documents
The Associated Press reports that the U.S. Treasury Department has described remote access by Chinese state-sponsored hackers to workstations and unclassified documents as a “major cybersecurity incident.” The Treasury Department said it learned of the latest problem on Dec. 8, when a third-party software service provider, BeyondTrust, flagged that hackers had stolen a key “used […]
Brothel Visits Exposed In Volkswagen Location Data Leak
There are breaches and then there are really really embarrassing breaches. Jalopnik reports: Things aren’t going so great at Volkswagen right now, and while the latest scandal likely won’t rise to the level of the diesel emissions scandal, a security lapse by VW’s in-house software developer Cariad did expose the locations of about 800,000 electric vehicles to […]
AT&T and Verizon say networks are secure after being breached by China-linked Salt Typhoon hackers
TechCrunch followed up on the Salt Typhoon attacks on major telecoms: U.S. telecom giants AT&T and Verizon say they have secured their networks after being targeted by the China-linked Salt Typhoon cyberespionage group. In a statement given to TechCrunch on Monday, AT&T spokesperson Alexander Byers said the company detects “no activity by nation-state actors in our networks at […]
HHS Office for Civil Rights Proposes Measures to Strengthen Cybersecurity in Health Care Under HIPAA
The Department’s Office for Civil Rights seeks to update HIPAA Security Rule for the first time since 2013 Source: U.S. Department of Health and Human Services, December 27, 2024