LATEST POST
Chinese hack of global telecom providers is ‘ongoing,’ officials urge people to use encrypted apps to communicate
The U.S. may not have totally kicked China-affiliated Salt Typhoon out of U.S. telecommunication systems, a new publication by CISA explains. Politico reports that CISA and the FBI are advising people to use encrypted communications: Jeff Greene, [executive assistant director of cybersecurity at the Cybersecurity and Infrastructure Security Agency], strongly urged Americans to “use your […]
Six password takeaways from the updated NIST cybersecurity framework
Specops Software has some useful advice to share and some of it may be surprising, Password security is changing — and updated guidelines from the National Institute of Standards and Technology (NIST) reject outdated practices in favor of more effective protections. Don’t have time to read the 35,000-word guidelines? No problem. Here are the six takeaways from NIST’s new […]
Uganda confirms hack of central bank accounts, official downplays extent of loss
On November 28, Reuters reported: A senior official at Uganda’s finance ministry confirmed that accounts in the country’s central bank had been hacked but he downplayed the extent of the losses. The Bank of Uganda had said late on Thursday it was awaiting a police investigation into a news report that offshore hackers stole 62 […]
Wanted Russian Hacker Linked to Hive and LockBit Ransomware Arrested
The Hacker News reports that a notorious Russian cybercriminal wanted in the U.S. in connection with LockBit and Hive ransomware operations has been arrested: According to a news report from Russian media outlet RIA Novosti, Mikhail Pavlovich Matveev has been accused of developing a malicious program designed to encrypt files and seek ransom in return for a […]
Tips for Vacation Rental, Property Mgmt. Businesses Facing Vendor Cybersecurity Risk
Lawyers at JacksonLewis write: Last year, as reported on the Maine Attorney General’s Office website, Resort Data Processing (RDP) experienced a data breach affecting over 60,000 individuals caused by a “SQL injection vulnerability which allowed an unauthorized third party to redirect payment card information from in-process transactions on our RDP’s clients’ on-premises Internet Reservation Module (“IRM”) […]
Data on 760K workers from Xerox, Nokia, BofA, Morgan Stanley and more dumped online
More late woes from the massive 2023 MoveIT databreach. The Register reports that more companies are now seeing their data leaked online on a popular hacking forum: Hundreds of thousands of employees from major corporations including Xerox, Nokia, Koch, Bank of America, Morgan Stanley and others appear to be the latest victims in a massive […]
Russian Hackers Use Game-Changing Wi-Fi Hacking Technique to Breach US Networks
If you’re old enough to remember when neighbors “borrowed” your wi-fi or cable connection so they didn’t have to pay for services, then you may appreciate the “nearest neighbor” attack as part of cyberwar. Kyiv Post reports: Russian military spies have employed an innovative technique using neighboring Wi-Fi systems to breach secure networks in an […]
Is The FinCEN Laying The Foundation For The G.O.A.T. Data Breach?
A recent article by Allen Matkins Leck Gamble Mallory & Natsis LLP begins: On May 29, 1453 the walls of Constantinople had stood unbreached for more than a thousand years. Yet on that day, the army of Sultan Mehmed II was able to force entry into the city through the Gate of St. Romanus. The Byzantine Emperor Constantine […]