LATEST POST
23andMe’s genes not strong enough to avoid Chapter 11
The Register reports: Beleaguered DNA testing biz 23andMe – hit by a massive cyber attack in 2023 – is filing for bankruptcy protection in the US following years of financial uncertainty. It said that Chapter 11 proceedings were initiated in the US Bankruptcy Court for the Eastern District of Missouri on Sunday, and the court will oversee […]
Trump Administration Begins Shifting Cyberattack Response to States
The Wall Street Journal reports: The Trump administration wants state and local governments to play a bigger role in protecting water utilities, ports and other critical infrastructure from cyberattacks. In an executive order signed Tuesday, President Trump directed White House senior security advisers to draw up a national resilience plan to protect critical infrastructure that […]
Coinbase was primary target of recent GitHub Actions breaches
BleepingComputer reports: Researchers have determined that Coinbase was the primary target in a recent GitHub Actions cascading supply chain attack that compromised secrets in hundreds of repositories. According to new reports from Palo Alto Unit 42 and Wiz, the attack was carefully planned and began when malicious code was injected into reviewdog/action-setup@v1 GitHub Action. It is unclear how the breach […]
Did they or didn’t they? Oracle denies breach after hacker claims theft of 6 million data records
BleepingComputer reports: Oracle denies it was breached after a threat actor claimed to be selling 6 million data records allegedly stolen from the company’s Oracle Cloud federated SSO login servers. “There has been no breach of Oracle Cloud. The published credentials are not for the Oracle Cloud. No Oracle Cloud customers experienced a breach or […]
Cyber Hackers Claim To Have Disrupted Communication Networks of 116 Iranian Ships
Marine Insight reports: A hacker group, Lab Dookhtegan, has claimed to have targeted 116 Iranian ships belonging to two major Iranian companies and disrupting their communication networks. The Group wrote on Telegram that the companies were involved in several illegal activities and supplied munitions to the Houthis. The cyber attack was carried out to coincide […]
Security Researcher Comments on HIPAA Security Rule
Security researcher Adam Shostack writes:
$9.95M National Student Clearinghouse data breach class action settlement
Top Class Actions reports: National Student Clearinghouse agreed to a $9.95 million class action lawsuit settlement to resolve claims that it failed to protect consumers from a 2023 MOVEit data breach. The National Student Clearinghouse settlement benefits individuals whose Social Security numbers were included in the files affected by the MOVEit data breach between May […]
Former University of Michigan football coach indicted for hacking accounts, downloading ‘intimate’ photos
ABC News reports: The former co-offensive coordinator for the University of Michigan’s football team has been charged with hacking into thousands of athlete and alumni accounts and downloading private data, including “intimate” photos, over an eight-year span, according to federal investigators. Matthew Weiss, 42, who was also the team’s quarterbacks coach, allegedly gained unauthorized access […]