Questions continue to abound following a data leak that reportedly contained 2.9 billion records with Americans’ personal information. Investigative journalist Brian Krebs summarizes what is known about the data in the breach, its authenticity, and the company behind the data. HaveIBeenOwned.com’s Troy Hunt analyzed the leaked data and found it is a somewhat disparate collection of consumer and […]
From the Cleveland FBI: On August 12, FBI Cleveland announced the disruption of “Radar/Dispossessor”—the criminal ransomware group led by the online moniker “Brain”—and the dismantling of three U.S. servers, three United Kingdom servers, 18 German servers, eight U.S.-based criminal domains, and one German-based criminal domain. Since its inception in August 2023, Radar/Dispossessor has quickly developed […]
The BBC reports: The FBI has opened an investigation into allegations from the Trump campaign that it was targeted by hackers working for the Iranian government. “We can confirm the FBI is investigating the matter,” the agency said in a short statement on Monday without specifically naming the former president or Iran. A Trump campaign […]
Here we go again with foreign interference in our national election? Maybe. Politico reports: Former President Donald Trump’s campaign said Saturday that some of its internal communications had been hacked. The acknowledgment came after POLITICO began receiving emails from an anonymous account with documents from inside Trump’s operation. The campaign blamed “foreign sources hostile to […]
If verified, one of the largest breaches ever of personal information of Americans, Canadians, and UK persons went up for sale on a hacking forum on April 7. While researchers and analysts watched and started investigating the listing, the background checks firm allegedly responsible for the data remained silent, neither confirming nor refuting the claimed […]
In April 2024, AT&T learned that its customer data had been exfiltrated from its Snowflake workspace. The breach affected 90 million or more customers’ call and text histories recorded during a six-month period in 2022. The following is a press release from Senator Chuck Grassley:
A cyberattack on a leading home security firm had the potential to put homeowner’s security at risk. But were the hackers able to access security codes or other information that could be problematic? The Record reports: The home security systems company ADT Inc. announced Wednesday that unauthorized hackers unlawfully broke into some databases storing customer […]
The 2022 ransomware attack on Advanced, a National Health Service (NHS) vendor, was devastating to patient care. Now the U.K.’s Information Commissioner’s Office has indicated it plans to impose a substantial fine on the vendor. TechCrunch reports: U.K. data protection authorities have issued a provisional fine of more than £6 million to NHS vendor Advanced […]
When Henry Schein was hit by AlphV/BlackCat last year and didn’t pay, the threat actors hit them again. The Cyber Express reports: Prominent dental and medical equipment provider Henry Schein has lowered its annual profit and growth forecast, owing to a series of cyberattacks last year. Reuters reported that the company’s shares (HSIC) were down 7.3% to […]
Leaked Environment Variables Allow Large-Scale Extortion Operation of Cloud Environments – Researchers
Researchers at Palo Alto Network have reported a serious risk to organizations using cloud services that may result in an organization’s files being deleted and held for ransom. The risk is not due to any vulnerability with the cloud services themselves. The risk is due to the victim organizations misconfiguring their settings and inadvertently exposing […]