LATEST POST
Scattered Spider gang is really good at fake help-desk calls
The Register reports: The call came into the help desk at a large US retailer. An employee had been locked out of their corporate accounts. But the caller wasn’t actually a company employee. He was a Scattered Spider criminal trying to break into the retailer’s systems – and he was really good, according to Jon […]
The simple daily phone habit that could save you from hackers
EuroWeekly reports an easy-to-use tip that may prevent your phone from falling prey to hackers: Why restarting your phone daily could protect your privacy [Ronan] Farrow’s advice is refreshingly straightforward: restart your phone every day.‘It sounds basic,’ he said in an interview, “but restarting your device regularly can actually disrupt spyware and prevent a lot […]
Broadcom employee data stolen by ransomware crooks following hit on payroll provider
The Register reports: A ransomware attack at a Middle Eastern business partner of payroll company ADP has led to customer data theft at Broadcom, The Register has learned. It’s understood Broadcom’s HR department has begun the process of informing current and former staff who are affected by the September ransomware attack at Business Systems House (BSH). Broadcom […]
Be Careful What You Search For — Crypto Hackers Are Watching
Forbes reports: When you think of cybercriminal actors watching you, maybe phishing threats such as Hello Pervert, where the attacker claims to know where you live and has proof to back it up, spring to mind. Or how about the ransomware gang that has been found to install employee monitoring software to watch victims at work? Recent reports […]
Breachforums Boss to Pay $700k in Healthcare Breach
Brian Krebs reports: In what experts are calling a novel legal outcome, the 22-year-old former administrator of the cybercrime community Breachforums will forfeit nearly $700,000 to settle a civil lawsuit from a health insurance company whose customer data was posted for sale on the forum in 2023. Conor Brian Fitzpatrick, a.k.a. “Pompompurin,” is slated for resentencing next month […]
Japan enacts new Active Cyberdefense Law allowing for offensive cyber operations
The Record reports that Japan has enacted a new law that permits the country’s authorities to preemptively engage with adversaries through offensive cyber operations to prevent significant damage to the country: The new Active Cyberdefense Law mirrors recent reinterpretations of Article 9, providing Japan’s Self-Defence Forces with the right to provide material support to allies […]
RIBridges’ firewall worked, but hundreds of alerts went unnoticed or ignored.
Footnotes in CrowdStrike’s forensics report offer troubling details of Deloitte’s handling of incident logs. Rhode Island Current reports that the attack on RIBridges triggered hundreds of firewall alerts during the five months that attackers were in the network and were transferring gigabytes of data. But the state’s vendor, Deloitte, did not know the system had […]
Cyber criminals bribed rogue overseas support agents to steal Coinbase customer data
Coinbase says they are protecting their customers and standing up to the extortionists. Tl;dr: Cyber criminals bribed and recruited a group of rogue overseas support agents to steal Coinbase customer data to facilitate social engineering attacks. These insiders abused their access to customer support systems to steal the account data for a small subset of […]