What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2023-12-29 19:30:00 | Cyberattack sur l'hôpital du Massachusetts Système de dossiers perturbés, services d'urgence Cyberattack on Massachusetts hospital disrupted records system, emergency services (lien direct) |
La série de cyberattaques dommageables contre les établissements de santé américains s'est poursuivie cette semaine alors qu'un incident a éliminé le système de dossiers de santé électronique dans un hôpital du Massachusetts et a fait que l'établissement refuse les ambulances le jour de Noël.L'hôpital Anna Jaques, à environ 35 miles au nord de Boston, était «ouvert à tous les patients» vendredi car il
The string of damaging cyberattacks against U.S. healthcare facilities continued this week as an incident knocked out the electronic health records system at a Massachusetts hospital and caused the facility to turn away ambulances on Christmas Day. Anna Jaques Hospital, about 35 miles north of Boston, was “open to all patients” on Friday as it |
Guideline Medical | ★★★ | |
|
2023-03-27 12:30:00 | Les militaires américains ont besoin de 7e branche juste pour le cyber, les dirigeants actuels et anciens disent [US military needs 7th branch just for cyber, current and former leaders say] (lien direct) |
Une association nationale des dirigeants actuels et anciens de la sécurité numérique militaire appelle le Congrès à établir un cyber-service distinct, faisant valoir que l'absence d'un «risque inutile» pour la sécurité nationale des États-Unis.Dans un mémorandum du 26 mars, l'Association militaire cyber-professionnelle [a exhorté les législateurs à établir une cyber-force américaine] (https://public.milcyber.org/legislation) dans cette
A national association of current and former military digital security leaders is calling on Congress to establish a separate cyber service, arguing that the lack of one creates an “unnecessary risk” to U.S. national security. In a March 26 memorandum, the Military Cyber Professional Association [urged lawmakers to establish a U.S. Cyber Force](https://public.milcyber.org/legislation) in this |
Guideline | ★★★ | |
|
2023-03-13 10:43:00 | Estonian official says parliamentary elections were targeted by cyberattacks (lien direct) |
Estonia's parliamentary elections this month were unsuccessfully targeted by cyberattacks, one of the country's leading cybersecurity officials told The Record. The elections marked the first time that the majority of Estonians cast ballots using the country's [internet voting system](https://www.youtube.com/watch?v=uz9CUK0Ii6Q). While officials in countries like the United Kingdom have domestically warned that such systems introduce risks |
Threat Guideline | ★★★ | |
|
2023-03-08 20:00:00 | Supporters of surveillance law must \'lean in\' to transparency, Sen. Warner says (lien direct) |
The chair of the Senate Intelligence Committee on Wednesday repeatedly urged U.S. intelligence leaders to show “courage” in their campaign to renew an expiring surveillance law, warning that a lack of transparency with the American public and dubious policymakers could sink the effort. Last week the Biden administration [launched its push for reauthorization](https://therecord.media/senior-doj-official-warns-lapse-of-surveillance-law-would-harm-cyber-investigations) of Section |
Guideline | ★★ | |
|
2023-03-07 14:40:00 | One leader for Cyber Command, NSA has \'substantial benefits,\' report says (lien direct) |
The head of U.S Cyber Command and the National Security Agency testified Tuesday that the two entities should continue to share a leader, citing the conclusions in a recent high-level review that has yet to be shared with the public.
In [written testimony](https://www.cybercom.mil/Media/News/Article/3320195/posture-statement-of-general-paul-m-nakasone/) to a Senate panel, Army Gen. Paul Nakasone directly quoted the review of the “dual hat” leadership structure, which has existed since Cyber Command was established in 2010.
The report found “'substantial benefits that present compelling evidence for retaining the existing structure,'” according to Nakasone, who took over both organizations in 2018. Momentum for splitting the roles increased during the Trump administration.
The Record first reported that the Biden administration had tapped former Joint Chiefs of Staff Chairman Joseph F. Dunford Jr. to lead the review. The team [concluded without a policy recommendation](https://therecord.media/review-of-nsa-cyber-command-leadership-structure-ends-without-official-recommendation) on maintaining or splitting the arraignment, but it leaned heavily toward keeping the two conjoined, despite long-held concerns that the positions are too much for a single person.
Nakasone also wrote that the review “highlighted” CYBERCOM and NSA's work defending U.S. elections from foreign interference, fighting ransomware operators and bolstering the military's other combatant commands as reasons to keep the two together.
Nakasone, one of Cyber Command's original architects, said publicly last year that he met with Dunford's study group and “had an opportunity to share my views.”
“Success in protecting the national security of the United States in cyberspace would be more costly and less decisive with two separate organizations under two separate leaders,” Nakasone wrote in his testimony for the Senate Armed Services Committee.
“The enduring relationship is vital for both organizations to meet the strategic challenges of our adversaries as they mature their capabilities against the United States,” he added.
|
Ransomware Guideline | ★★★ | |
|
2023-03-07 13:05:00 | Israel blames state-sponsored Iranian hackers for ransomware attack on university (lien direct) |
Israeli cybersecurity officials on Tuesday blamed hackers sponsored by the Iranian government for a ransomware attack on the country's leading technology university.
The attack in February forced the Israel Institute of Technology, also known as Technion, to postpone exams and shut down its IT systems. The incident followed what Israeli defense officials said were dozens of attempted Iranian cyberattacks over the past year.
Hackers from a previously unknown group calling itself DarkBit claimed responsibility in a note left on Technion's systems demanding 80 bitcoins ($1.7 million at the time) to enable the university to recover its files.
The note was unusually ideological, criticizing “an apartheid regime” and stating: “They should pay for their lies and crimes, their names and shames. They should pay for occupation, war crimes against humanity, killing the people (not only Palestinians' bodies, but also Israelis' souls) and destroying the future and all dreams we had.”
Israel's National Cyber Directorate on Tuesday attributed the attack to a threat group tracked as MuddyWater, which last year U.S. Cyber Command linked to the Iranian Ministry of Intelligence and Security.
British and American authorities subsequently issued a warning about the hacking group, saying it was targeting a “range of government and private-sector organizations across sectors - including telecommunications, defense, local government, and oil and natural gas - in Asia, Africa, Europe, and North America.”
While Israel and Iran have never been in a declared war against each other, the countries have repeatedly blamed each other for cyberattacks targeting civilian infrastructure, including a steel plant in Iran. Iranian hackers have been blamed for attacks on water systems in Israel.
The attack on the university in Haifa is not the first time that Iranian state-sponsored hackers have been linked to ransomware incidents. A French-Venezuelan cardiologist called Moises Luis Zagala Gonzalez was charged by the U.S. Department of Justice last year with developing the Thanos ransomware and allegedly boasting about it being used by Iranian government-linked hackers.
Another advisory issued in 2022 by cyber authorities in the United Kingdom, United States, Australia and Canada - members of the Five Eyes intelligence alliance - warned that “cyber actors affiliated with Iran's Islamic Revolutionary Guard Corps are exploiting vulnerabilities to launch ransomware operations against multiple sectors.” |
Ransomware Threat Guideline | ★★ | |
|
2023-03-06 14:03:00 | Vice Society ransomware group claims German university as latest victim (lien direct) |
The Vice Society ransomware group added the Hamburg University of Applied Sciences (HAW Hamburg) to its leak site this weekend following an attack that the institution said took place late last year.
HAW Hamburg is one of several German-speaking institutions with a focus on applied sciences to be targeted by ransomware gangs in recent months.
In [a statement](https://www.haw-hamburg.de/fileadmin/PK/PDF/Infos_Art._34_DS-GVO_final.pdf) sent to all employees and students, the university said the attack was on December 29, describing a ransomware incident without using the term itself. The school has about 16,000 students.
“The attackers worked their way manually from decentralized IT systems via the network to the central IT and security components of HAW Hamburg. They also gained administrative rights to the central storage systems via this attack path and thus compromised the central data storage,” the statement explained.
“With the administrative rights obtained, the encryption of various virtualized platforms and the deletion of saved backups were finally started,” it added.
The university warned that “significant amounts of data from various areas” were copied, including usernames and “cryptographically secured” passwords, email addresses and mobile phone numbers.
Despite describing the compromised passwords as “cryptographically secured” the IT team recommended that students and staff change their passwords “for all internal university applications,” adding “in particular, change your password for Microsoft Teams and avoid using passwords that you have already used before.”
The university said it had to rebuild its IT systems, including the existing Microsoft cloud environment, and was “trying to restore a backup of the email data from the old mail server as of December 14.”
Following the attack, HAW Hamburg's IT security said it had “received several reports from students about attempts to log on to Internet portals such as Amazon and eBay by unauthorized third parties.”
“After reviewing all previous reports, and taking into account the attacker group's previous approach, it can be ruled out that the login attempts are related to the security incident at HAW Hamburg or the attacker group,” the team added.
Back in January the Vice Society ransomware group [claimed responsibility](https://therecord.media/vice-society-ransomware-gang-claims-attack-on-one-of-germanys-largest-universities/) for a November attack against the University of Duisburg-Essen in Germany.
Then in February the University of Zurich, Switzerland's largest university, announced it was the target of a “serious cyberattack,” which a spokesperson described to The Record as “part of a current accumulation of attacks on educational and health institutions.”
The week before, the [Harz University of Applied Sciences](https://www.n-tv.de/regionales/sachsen-anhalt/Hochschule-Harz-nach-digitalem-Angriff-offline-article23885755.html) in Saxony-Anhalt, [Ruhr West University](https://www.hochschule-ruhr-west.de/hrwoffline/), and the [EU/FH European University of Applied Sciences](https://www.eufh.de/hochschule/pressemitteilung) all announced being impacted by cyberattacks.
|
Ransomware Guideline Cloud | ★★ | |
|
2023-03-02 19:21:33 | In mixed response to White House cyber strategy, House Republicans focus on regulations (lien direct) |  Republican leaders on the House Homeland Security Committee questioned the White House’s desire for more cyber regulations after the release of the National Cybersecurity Strategy on Thursday. Committee Chairman Mark Green and Cybersecurity Subcommittee Chairman Andrew Garbarino did praise aspects of the plan, namely the focus on threats from Russia and China as well as [… |
Guideline | ★★ | |
|
2023-02-10 19:45:08 | December ransomware attack leads to massive data breach from California health network (lien direct) |  Facilities within California's Heritage Provider Network reported a data breach related to a ransomware attack in December |
Ransomware Data Breach Guideline | Heritage Heritage | ★★★ |
|
2023-02-07 21:17:45 | Russian crypto exchange exec pleads guilty to laundering Ryuk ransomware funds (lien direct) |  A Russian man pleaded guilty on Monday in an Oregon court on charges related to laundering funds for the Ryuk ransomware group. Denis Dubnikov was arrested in November 2021 in the Netherlands before being extradited to the U.S. last August. Prosecutors accused him, along with 13 co-conspirators whose names were redacted in a federal indictment, [… |
Ransomware Guideline | ★★★ | |
|
2023-02-07 19:19:38 | House approves cybersecurity research bill focused on energy infrastructure (lien direct) |  The U.S. House of Representatives on Monday passed a bill that would provide funding for cybersecurity research with a focus on protecting the country's energy infrastructure. The Energy Cybersecurity University Leadership Act - inspired by the ransomware attack on Colonial Pipeline and several other incidents - proposes grants and other forms of funding to graduate [… |
Ransomware Guideline | ★★★ | |
|
2023-02-07 17:41:31 | More than 2,000 cybersecurity patent applications filed since 2010: report (lien direct) |  The number of cybersecurity patent applications has skyrocketed over the past decade, with U.S. companies leading the way. According to French software company IS Decisions, about 2,270 cybersecurity-related patents have been filed since the turn of the century. Nearly all – about 97% – have been filed since 2010, a year that marked a huge [… |
Guideline | ★★★ | |
|
2023-02-03 16:53:57 | Microsoft accuses Iran\'s government of cyber operation against Charlie Hebdo (lien direct) |  Microsoft says the data breach of Charlie Hebdo was retaliation for the satire publication's call for drawings of Iran's leader, Ali Khamenei. |
Data Breach Guideline | ★ | |
|
2023-01-31 14:01:13 | British government minister told council to keep quiet after ransomware attack (lien direct) |  An unnamed British government minister told the leader of Redcar and Cleveland Borough Council to keep quiet about the impact of a “catastrophic” ransomware attack two years ago, a parliamentary committee was told on Monday. The pressure from central government to not discuss the impact of the attack “caused us a lot of issues,” said [… |
Ransomware Guideline | ★★ | |
|
2023-01-30 20:31:27 | New York\'s Andrew Garbarino takes helm of House\'s cybersecurity subcommittee (lien direct) |  New York Republican Andrew Garbarino has been chosen as the new chairman of the House’s Cybersecurity, Infrastructure Protection and Innovation Subcommittee. With Republicans taking control of the House, experts were eagerly waiting for leadership to pick the successor to Democratic Rep. Yvette D. Clarke, another New Yorker who led the subcommittee when Democrats had the […] |
Guideline | ★★★ | |
|
2023-01-30 01:57:59 | How Ukraine\'s Cyber Police fights fraud, scams, and attacks on critical infrastructure (lien direct) |  Editor's note: Ukraine's Cyber Police had a busy year in 2022. The law enforcement agency typically focuses its efforts on online fraud, scams, and other forms of financially-motivated cybercrime. But when Russia invaded Ukraine in February, the Cyber Police started seeing a surge in new types of attacks. Yurii Vykhodets, who leads the department, said […] |
Guideline | ★★ | |
|
2023-01-26 20:15:18 | CISA\'s Joint Cyber Defense Collaborative to tackle energy, water security in 2023 (lien direct) |  The Cybersecurity and Infrastructure Security Agency's (CISA) Joint Cyber Defense Collaborative (JCDC) will be focusing this year on beefing up security in the energy sector and leading the effort to update the National Cyber Incident Response Plan, according to the body’s planning agenda. Announced in 2021, the JCDC is an initiative spearheaded by CISA Director [… |
Guideline | ★★ | |
|
2023-01-19 12:26:38 | Russia-linked drug marketplace Solaris hacked by its rival (lien direct) |  Solaris, one of the leading darknet drug marketplaces, has been taken over by its rival, according to research released this week. Users who tried to access Solaris after January 13 were redirected to the recently-launched Russian language drug marketplace known as Kraken, which claimed to have successfully taken over Solaris' infrastructure, GitLab repository and project [… |
Guideline | ★★★★ | |
|
2023-01-16 05:00:03 | Ransomware Diaries: Undercover with the Leader of Lockbit (lien direct) |  An unusual announcement appeared in Russian Dark Web forums in June of 2020. Amid the hundreds of ads offering stolen credit card numbers and batches of personally identifiable information there was a Call for Papers. “We're kicking off the summer PAPER CONTEST,” it read. “Accepted article topics include any methods for popuring shells, malware and [… |
Ransomware Malware Guideline | ★★★ | |
|
2023-01-11 20:56:40 | House Reps introduce bill to fund research into cybersecurity and energy infrastructure (lien direct) |  A bill to fund research into the cybersecurity needs of the country's energy infrastructure was introduced by two members of Congress on Wednesday. Congresswoman Deborah Ross (D-NC) and Congressman Mike Carey (R-OH) said the Energy Cybersecurity University Leadership Act will offer grants and other forms of funding to graduate students and postdoctoral researchers focusing on [… |
Guideline | ★★ |
1
We have: 20 articles.
We have: 20 articles.
To see everything:
Our RSS (filtrered)
