What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2023-03-23 19:10:00 | La ville de Toronto et Virgin confirment que les pirates ont accédé aux données via des systèmes de transfert de fichiers [City of Toronto and Virgin confirm hackers accessed data through file transfer systems] (lien direct) |
La ville de Toronto et le conglomérat multinational britannique Virgin ont confirmé que les pirates avaient pu accéder aux données grâce à une vulnérabilité dans un service de transfert de fichiers populaire qui a affecté des dizaines d'organisations ces dernières semaines.Des responsables de Toronto ont déclaré jeudi au dossier qu'ils enquêtaient sur des fichiers accessibles par des cybercriminels qui ont piraté
The City of Toronto and British multinational conglomerate Virgin confirmed that hackers were able to access data through a vulnerability in a popular file transfer service that has affected dozens of organizations in recent weeks. Toronto officials told The Record on Thursday that they are investigating files that were accessed by cybercriminals who hacked into |
Vulnerability | ★★★ | |
|
2023-03-23 17:50:00 | Les sénateurs appellent le poste de cybersécurité approuvé par le Congrès au ministère de l'Énergie [Senators call for Congress-approved cybersecurity position at Department of Energy] (lien direct) |
Plusieurs sénateurs des deux parties ont appelé à l'élévation du poste de directeur de la cybersécurité au ministère de l'Énergie lors d'une audience jeudi.Le Congrès a [passé des années] (https://www.risch.senate.gov/public/index.cfm/2021/3/risch-king-urge-energy-department-don-t-downgrade-cbersesecurity) Critiquant le blancChambre et secrétaire à l'énergie Jennifer Granholm pour avoir effectivement abaissé le poste de cybersécurité à partir d'un rôle de niveau assistant-secrétaire qui nécessiterait une confirmation du Sénat
Several senators from both parties called for the elevation of the cybersecurity director position at the Department of Energy during a hearing on Thursday. Congress has [spent years](https://www.risch.senate.gov/public/index.cfm/2021/3/risch-king-urge-energy-department-don-t-downgrade-cybersecurity) criticizing the White House and Secretary of Energy Jennifer Granholm for effectively downgrading the cybersecurity position from an assistant-secretary level role that would require Senate confirmation to |
General Information Legislation | ★★ | |
|
2023-03-23 16:45:00 | Les législateurs américains disent au PDG de Tiktok que l'application \\ 'devrait être interdite \\' [US lawmakers tell TikTok CEO the app \\'should be banned\\'] (lien direct) |
Le PDG de Tiktok \\ a tenté jeudi de dissiper les inquiétudes que l'application vidéo abrégée pose un risque de cybersécurité et de sécurité nationale lors de son premier témoignage auprès d'un comité de la Chambre des États-Unis.Les législateurs bipartisans du comité de l'énergie et du commerce de la Chambre ont pressé Shou Chew, qui a pris la tête de Tiktok en 2021, sur les liens de l'application
TikTok\'s chief executive attempted on Thursday to dispel concerns that the short-form video app poses a cybersecurity and national security risk in his first time testifying to a U.S. House committee. Bipartisan lawmakers on the House Energy and Commerce Committee pressed Shou Chew, who took the helm of TikTok in 2021, about the app\'s ties |
General Information | ★★ | |
|
2023-03-23 13:55:00 | France Greenlights AI Tools for Olympics Malgré les préoccupations de la surveillance dystopique \\ ' [France greenlights AI tools for Olympics despite \\'dystopian surveillance state\\' concerns] (lien direct) |
L'Assemblée nationale française a adopté jeudi une loi permettant au gouvernement d'utiliser de nouvelles technologies d'intelligence artificielle (IA) pour surveiller le public en utilisant la surveillance vidéo pendant les Jeux Olympiques de Paris l'été prochain.Les Jeux de Paris devraient être une expérience dans l'utilisation des technologies de la surveillance vidéo AI, bien que le système en temps réel
The French National Assembly passed on Thursday a law allowing the government to use novel artificial intelligence (AI) technologies to monitor the public using video surveillance during the Olympic Games in Paris next summer. The Paris Games are set to be an experiment in the use of video surveillance AI technologies, although the real-time system |
Legislation | ★★★★ | |
|
2023-03-23 12:44:00 | Les incidents liés à l'Iran ont incité le cyber commandement à envoyer \\ 'Hunt Forward \\' Team en Albanie [Iran-linked incidents spurred Cyber Command to send \\'hunt forward\\' team to Albania] (lien direct) |
L'armée américaine a envoyé une équipe de cyber-opérateurs en Albanie l'année dernière pour aider à y défendre les réseaux gouvernementaux après une paire d'attaques numériques qui ont été imputées à l'Iran.La Cyber National Mission Force (CNMF) a déployé une équipe de deux douzaines de personnel sur une opération «Hunt Forward» [après le deuxième piratage] (https://therecord.media/Abanian-pm-says-iranian-hackers-hit-country-With-un autre cyberattaque), qui a eu lieu
The U.S. military sent a team of cyber operators to Albania last year to help defend government networks there after a pair of digital attacks that were blamed on Iran. The Cyber National Mission Force (CNMF) deployed a team of two dozen personnel on a “hunt forward” operation [following the second hack](https://therecord.media/albanian-pm-says-iranian-hackers-hit-country-with-another-cyberattack), which took place |
General Information | ★★★ | |
|
2023-03-22 21:32:00 | Group nord-coréen APT \\ 'Kimsuky \\' ciblant des experts avec une nouvelle campagne de spectre [North Korean APT group \\'Kimsuky\\' targeting experts with new spearphishing campaign] (lien direct) |
Cette semaine, les agences gouvernementales allemandes et sud-coréennes ont mis en garde cette semaine d'une nouvelle [campagne de sport] (https://www.verfassungsschutz.de/shareddocs/publikationen/en/prevention/2023-03-20-joint-cyber-security-Advisory-korean.html) d'un groupe nord-coréen notoire ciblant des experts sur la péninsule.La campagne a accès aux victimes \\ 'Google Comptes via deux méthodes d'attaque - l'infection des téléphones Android via une application malveillante sur Google Play et l'utilisation d'un
German and South Korean government agencies this week warned about a new [spearphishing campaign](https://www.verfassungsschutz.de/SharedDocs/publikationen/EN/prevention/2023-03-20-joint-cyber-security-advisory-korean.html) from a notorious North Korean group targeting experts on the peninsula. The campaign gains access to victims\' Google accounts through two attack methods - the infection of Android phones through a malicious app on Google Play and the use of a |
General Information | ★★ | |
|
2023-03-22 20:10:00 | Microsoft enquêtant sur les rapports de \\ 'acropalypse \\' Image-Crop Vulnérabilité dans Windows [Microsoft investigating reports of \\'aCropalypse\\' image-crop vulnerability in Windows] (lien direct) |
Microsoft examine les rapports sur la question de savoir si une vulnérabilité permettant à quelqu'un de récupérer les parties recadrées ou expurgées de la capture d'écran de Google Pixel affecte également les outils de Windows.Vendredi, les chercheurs en cybersécurité Simon Aarons et David Buchanan [ont rendu compte sur une vulnérabilité] (https://www.da.vidbuchanan.co.uk/blog/exploiting-acropalypse.html) dans l'outil d'évacuation d'écran Inbuilt de Pixel \\ de Pixel \\., Marquage, qui a permis à quiconque de récupérer partiellement l'original
Microsoft is examining reports of whether a vulnerability allowing someone to recover the cropped or redacted parts of Google Pixel screenshots also affects tools within Windows. On Friday, cybersecurity researchers Simon Aarons and David Buchanan [reported on a vulnerability](https://www.da.vidbuchanan.co.uk/blog/exploiting-acropalypse.html) in the Pixel\'s inbuilt screenshot editing tool, Markup, that allowed anyone to partially recover the original |
Vulnerability Vulnerability | ★★★ | |
|
2023-03-22 19:30:00 | CISA ajoute Inglis, Langevin, Katko et plus au comité consultatif [CISA adds Inglis, Langevin, Katko and more to Advisory Committee] (lien direct) |
La Cybersecurity and Infrastructure Security Agency (CISA) a ajouté 13 nouveaux membres à son comité consultatif de cybersécurité, y compris d'anciens représentants comme John Katko et Jim Langevin ainsi que l'ancien directeur national des États-Unis Chris Inglis.Le Royal Hansen de Google et l'ancien PDG du National Cyber Security Center Royaume-Uni, Ciaran Martin, ont également été ajoutés au comité, qui
The Cybersecurity and Infrastructure Security Agency (CISA) added 13 new members to its Cybersecurity Advisory Committee, including former representatives like John Katko and Jim Langevin as well as former U.S. National Cyber Director Chris Inglis. Google\'s Royal Hansen and former U.K. National Cyber Security Centre CEO Ciaran Martin were also added to the committee, which |
★★★ | ||
|
2023-03-22 13:00:00 | LIGNAGE POUR POUR LES DISSIONS DE CHAMPS SUR LA LOI DE LA SURVEILLANCE DE L'ARTICLE 702 [Lineup set for House talks on Section 702 surveillance law] (lien direct) |
Le groupe de travail du Comité du renseignement de la Chambre \\ sur le renouvellement de la loi sur la surveillance sans mandat connue sous le nom de l'article 702 comprendra deux membres qui ont siégé au panel lors du dernier combat de réautorisation controversé qui s'est produit pendant l'administration Trump.Le meilleur démocrate du comité, Jim Himes du Connecticut, a nommé mercredi ses choix pour rejoindre trois
The House Intelligence Committee\'s working group on the renewal of the warrantless surveillance law known as Section 702 will include two members who served on the panel during the last contentious reauthorization fight that occurred during the Trump administration. The committee\'s top Democrat, Jim Himes of Connecticut, named his choices Wednesday to join three already |
General Information | ★★ | |
|
2023-03-22 12:30:00 | Le Royaume-Uni émet une stratégie pour protéger les services de santé nationaux contre les cyberattaques [UK issues strategy to protect National Health Service from cyberattacks] (lien direct) |
Le gouvernement britannique a publié mercredi sa nouvelle stratégie de cybersécurité pour le National Health Service, visant à rendre le secteur de la santé du pays \\ «durcie considérablement à la cyberattaque, au plus tard en 2030».La stratégie vient dans le sillage de la [Wannacry] (https://www.theguardian.com/technology/2017/jun/16/wannacry-ransomware-attack-linked-north-korea-lazarus-group) Ransomware Attack en 2017, parallèlement à une attaque criminelle contre le fournisseur de logiciels [Advanced] (https://www.bbc.co.uk/news/technology-62725363) l'année dernière,
The British government published on Wednesday its new cybersecurity strategy for the National Health Service, aiming to make the country\'s healthcare sector “significantly hardened to cyber attack, no later than 2030.” The strategy comes in the wake of the [WannaCry](https://www.theguardian.com/technology/2017/jun/16/wannacry-ransomware-attack-linked-north-korea-lazarus-group) ransomware attack in 2017, alongside a criminal attack on the software supplier [Advanced](https://www.bbc.co.uk/news/technology-62725363) last year, |
Ransomware General Information | Wannacry APT 38 | ★★ |
|
2023-03-21 14:25:00 | BreachForums indique qu'il ferme après l'accès soupçonné des forces de l'ordre au backend [BreachForums says it is closing after suspected law enforcement access to backend] (lien direct) |
Dans une abrupte abrupte, le nouvel administrateur de la plate-forme cybercriminale populaire BreachForums a déclaré qu'ils prévoyaient de fermer le site après que son précédent administrateur a été [prétendument arrêté] (https://therecord.media/breachForums-arrest-new-ADINISTRATEUR) La semaine dernière.Un pirate selon le nom de compte «Baphomet» a initialement déclaré qu'ils travaillaient sur un plan d'urgence pour le forum après l'arrestation (https://www.blomberg.com/news/articles/2023-03-17/dark-web-breachforums-opérated-chargé-with-computer-crime) de Conor de 21 ans
In an abrupt about-face, the new administrator of popular cybercriminal platform BreachForums said they plan to shut down the site after its previous administrator was [allegedly arrested](https://therecord.media/breachforums-arrest-new-administrator) last week. A hacker going by the account name “Baphomet” initially said they were working through an emergency plan for the forum after the [arrest](https://www.bloomberg.com/news/articles/2023-03-17/dark-web-breachforums-operator-charged-with-computer-crime) of 21-year-old Conor |
★★★ | ||
|
2023-03-21 12:35:00 | Ransomware \\ 'Probablement \\' pour cibler les systèmes de transport OT, avertit UE Cyber Agency [Ransomware \\'likely\\' to target transportation OT systems, warns EU cyber agency] (lien direct) |
Les attaques de ransomwares sont devenues la cybernatre la plus importante face au secteur des transports de l'Union européenne, selon une nouvelle analyse publiée mardi.Le [rapport de 50 pages] (https://www.enisa.europa.eu/publications/enisa-transport-thereat-paysage) de l'Agence de l'Union européenne pour la cybersécurité (EISA) est la première analyse que l'agence a effectuée dans laMenaces auxquelles sont confrontés les secteurs de l'aviation, de la maritime, des chemins de fer et des routes.Il prévient que
Ransomware attacks have become the most significant cyberthreat facing the transport sector in the European Union, according to new analysis published Tuesday. The [50-page report](https://www.enisa.europa.eu/publications/enisa-transport-threat-landscape) from the European Union Agency for Cybersecurity (ENISA) is the first analysis the agency has conducted into the threats facing the aviation, maritime, railway and road sectors. It warns that |
Ransomware | ★★ | |
|
2023-03-20 19:58:00 | After BreachForums arrest, new site administrator says the platform will live on (lien direct) |
Un nouvel administrateur s'est intensifié pour reprendre BreachForums - une plate-forme cybercriminale populaire dont le propriétaire présumé a été arrêté la semaine dernière par le FBI.Un pirate selon le nom du compte «Baphomet» a déclaré qu'il travaillait sur un plan d'urgence pour le forum après l'arrestation de Conor Brian Fitzpatrick, 21 ans, à son domicile
A new administrator has stepped up to take over BreachForums - a popular cybercriminal platform whose alleged owner was arrested last week by the FBI. A hacker going by the account name “Baphomet” said he was working through an emergency plan for the forum after the arrest of 21-year-old Conor Brian Fitzpatrick at his home |
★★★ | ||
|
2023-03-20 18:45:00 | Millions in Punjab still without mobile internet as shutdown extended to fourth day (lien direct) |
|
★★★ | ||
|
2023-03-20 13:29:00 | NBA alerts fans after hack of third-party service provider (lien direct) |
The National Basketball Association (NBA) said it is contacting fans after an unnamed service provider was hacked. An NBA spokesperson did not respond to questions about what service provider was hacked and when, but told The Record that the league is now trying to help those affected. “We were recently made aware that an unauthorized |
Hack | ★★ | |
|
2023-03-19 17:15:00 | Pro-Russia hackers are increasingly targeting hospitals, researchers warns (lien direct) |
Cybersecurity researchers said this week that they have observed the pro-Russia hacking group known as Killnet increasingly launch distributed denial of service (DDoS) attacks targeting healthcare organizations since November. Killnet was established following Russia's invasion of Ukraine in February 2022, and spent most of the last year launching DDoS attacks against [governments and companies](https://therecord.media/ddos-denmark-us-russia-killnet) around |
★★★ | ||
|
2023-03-17 04:00:00 | Samsung\'s Exynos chips cited for potentially hackable flaws (lien direct) |
Important Samsung-made chips inside several popular Android devices have serious vulnerabilities that could allow attackers to “silently and remotely” compromise them, researchers said Thursday. Google's Project Zero team said Thursday that the Exynos modems used in multiple series of Samsung, Pixel and Vivo phones could be attacked “with no user interaction,” with methods that “require |
Vulnerability | ★★★ | |
|
2023-03-16 20:56:00 | Kaspersky releases decryptor for ransomware based on Conti source code (lien direct) |
Cybersecurity firm Kaspersky on Thursday released a decryptor that could help victims who had their data locked down by a version of the Conti ransomware. Kaspersky said the tool can be used on a malware strain that infected dozens of “companies and state institutions” throughout December 2022. Kaspersky did not name the strain, but experts |
Ransomware Malware Tool | ★★ | |
|
2023-03-16 18:33:00 | SEC proposes new cyber incident reporting rules for financial orgs (lien direct) |
The Securities and Exchange Commission (SEC) proposed new cybersecurity rules for a range of financial organizations that would force them to report incidents within 48 hours of detection and implement certain security policies. The new rules would also make it mandatory for some financial institutions to annually test and review the effectiveness of their cybersecurity |
★★ | ||
|
2023-03-16 16:50:00 | Russia-aligned \'Winter Vivern\' hackers spotted targeting Ukraine, Europe, India (lien direct) |
A new espionage campaign by a hacking group with suspected ties to Moscow targeted government agencies and telecom operators in Ukraine, India and Europe, researchers said Thursday. The group, known as Winter Vivern, is “highly creative” and operates with limited resources, carefully selecting targets for attacks, according to [an analysis](https://www.sentinelone.com/labs/winter-vivern-uncovering-a-wave-of-global-espionage/) by cybersecurity company SentinelOne. The |
★★★ | ||
|
2023-03-16 16:00:00 | As major elections loom, Meta unveils its internal Online Operations Kill Chain (lien direct) |
Next year will feature some of the most geopolitically significant elections of our times. Voters will be heading to the ballot boxes in not only the United Kingdom, United States and European Union, but also India, Turkey and Taiwan. Anticipating an even greater need for “investigative teams across industry, civil society, and government” to collaborate |
★★★★ | ||
|
2023-03-16 15:30:00 | Senators call on CISA to examine cybersecurity risks of Chinese consumer drones (lien direct) |
A bipartisan group of senators is asking the Cybersecurity and Infrastructure Security Agency (CISA) to examine consumer drones made by a company with “deep ties” to the Chinese Communist Party, warning that they could be used to spy on U.S. critical infrastructure. Several companies are in the process of expanding the use of consumer drones |
★★ | ||
|
2023-03-16 12:45:00 | Healthcare software firm ILS announces data breach affecting more than 4 million people (lien direct) |
The sensitive healthcare data of more than four million people was accessed by hackers who broke into the network of Independent Living Systems (ILS), a healthcare software company based in Miami. The company has provided third-party administrative services to health plans, providers, hospitals, and pharmaceutical and medical device companies for nearly two decades. ILS began |
Data Breach Medical | ★★ | |
|
2023-03-15 17:53:00 | \'Prolific\' crypto money laundering platform ChipMixer shuttered by Germany, US (lien direct) |
European and U.S. authorities have taken down a cryptocurrency mixing platform that facilitated rampant money laundering, and they arrested an alleged operator of the service. On Wednesday, [Europol announced](https://www.europol.europa.eu/media-press/newsroom/news/one-of-darkwebs-largest-cryptocurrency-laundromats-washed-out) that German and U.S. agencies seized four servers belonging to ChipMixer as well as approximately $46.5 million in Bitcoin. The U.S. Department of Justice also announced |
Legislation | ★★★★ | |
|
2023-03-15 13:37:00 | Scammers used compromised police accounts in extortion scheme, prosecutors say (lien direct) |
Two men broke into a federal law enforcement database and a Bangladeshi police officer's email account to conduct extortion schemes, U.S. law enforcement officials say. A federal court in New York [unsealed an indictment](https://www.justice.gov/usao-edny/pr/two-men-charged-breaching-federal-law-enforcement-database-and-posing-police-officers) Tuesday against 19-year-old Sagar Steven Singh and 25-year-old Nicholas Ceraolo, who are accused of illegally collecting personal information about specific people |
Threat | ★★★ | |
|
2023-03-15 12:17:00 | Ransomware gang exploited a zero-day in Microsoft security feature, Google says (lien direct) |
Financially motivated hackers are using a previously undocumented bug in Microsoft's SmartScreen security feature to spread the Magniber ransomware, according to a new report. The cybercriminals have been able to exploit the zero-day vulnerability in SmartScreen since December, researchers from Google's Threat Analysis Group (TAG) said. The Google team [reported](https://blog.google/threat-analysis-group/magniber-ransomware-actors-used-a-variant-of-microsoft-smartscreen-bypass/) its findings about the bug |
Ransomware Vulnerability Threat Threat | ★★ | |
|
2023-03-14 22:00:00 | Kremlin-backed hackers blamed in recent phishing attempts on EU agencies (lien direct) |
A Russian state-backed hacker group known as Nobelium is behind recent attempted cyberattacks on diplomatic entities and government agencies in the European Union, cybersecurity researchers say. In a campaign identified in early March, the hackers sent phishing emails with content related to diplomatic relations between Poland and the U.S., according to a report by cybersecurity |
Hack | APT 29 | ★★★ |
|
2023-03-14 20:36:00 | Hackers used Fortra zero-day to steal sales data from cloud management giant Rubrik (lien direct) |
Cloud data management giant Rubrik confirmed that hackers attacked the company using a vulnerability in a popular file transfer tool. The Clop ransomware group – which has been the primary force behind the [exploitation of a vulnerability](https://therecord.media/forta-goanywhere-mft-file-transfer-zero-day) affecting Fortra's GoAnywhere Managed File Transfer product – added Rubrik to its list of victims on Tuesday. A |
Ransomware Vulnerability Cloud | ★★ | |
|
2023-03-14 18:20:00 | New threat group hacked EU healthcare agency and embassies, researchers say (lien direct) |
A new hacking group is targeting European countries and organizations in an espionage campaign that began in June 2022, according to new research. Cisco's Talos cybersecurity team calls the new group “YoroTrooper” and said it has already successfully compromised accounts connected to a “critical” European Union healthcare agency and the World Intellectual Property Organization (WIPO). |
Threat | ★★★ | |
|
2023-03-14 18:10:00 | UK\'s largest state boarding school announces \'sophisticated cyberattack\' (lien direct) |
Wymondham College, the largest state boarding school in the United Kingdom, announced on Tuesday that it had been hit by a “sophisticated cyberattack”. The school, which has just over 1,200 students aged 11 to 18, did not explain the nature of the attack. Wymondham is the latest educational establishment in the country to face disruption |
★★★ | ||
|
2023-03-14 15:34:00 | CISA unveils ransomware warning pilot for critical infrastructure (lien direct) |
The Cybersecurity and Infrastructure Security Agency (CISA) on Monday unveiled an effort that will collect data about commonly exploited vulnerabilities in ransomware attacks and alert critical infrastructure operators of the risks. [The Ransomware Vulnerability Warning Pilot](https://www.cisa.gov/stopransomware/Ransomware-Vulnerability-Warning-Pilot) launched Jan. 30 and was mandated under the sweeping cyber incident reporting [legislation](https://therecord.media/biden-signs-cyber-incident-reporting-bill-into-law) President Joe Biden signed into law |
Ransomware Vulnerability | ★★★ | |
|
2023-03-14 14:11:00 | Hackers target South Asian government entities with KamiKakaBot malware (lien direct) |
Suspected government-backed hackers are attacking military and government organizations in South Asia with malware called KamiKakaBot that is designed to steal sensitive information. Researchers from Amsterdam-based cybersecurity firm EclecticIQ [attributed](https://blog.eclecticiq.com/dark-pink-apt-group-strikes-government-entities-in-south-asian-countries#A1) the attacks to the advanced persistent threat (APT) group Dark Pink. The group's previous victims include military, government, religious and non-profit organizations in Cambodia, Indonesia, |
Malware Threat | ★★ | |
|
2023-03-14 12:34:00 | Amazon-owned Ring denies \'ransomware event\' following darknet listing (lien direct) |
The smart doorbell and security camera company Ring has denied that it suffered a ransomware attack after the company was listed on a prominent ransomware gang's extortion site. The ALPHV ransomware group, also known as BlackCat, added the listing for Ring to its site late on Monday evening, adding: “There's always an option to let |
Ransomware | ★★★ | |
|
2023-03-14 12:01:00 | Medical device giant says cyberattack leaked sensitive data of 1 million people (lien direct) |
Medical device maker Zoll said a cyberattack in January exposed the sensitive information of more than 1 million people. In documents [provided](https://apps.web.maine.gov/online/aeviewer/ME/40/ab192c35-667d-4bc9-ad18-fa710bd10b15.shtml) to Maine's Attorney General, Zoll said the incident started on January 28 when they “detected unusual activity” on their internal network. The company added that information was accessed on February 2. Zoll said |
Medical | ★★★ | |
|
2023-03-13 23:02:00 | Analysts tracking $197 million theft from DeFi lender Euler Finance (lien direct) |
Hackers reportedly stole $197 million in cryptocurrency from the decentralized finance (DeFi) platform Euler Finance in the latest flash loan attack to target the industry. Euler Labs did not respond to requests for comment but [confirmed](https://twitter.com/eulerfinance/status/1635218198042918918) the attack on Monday morning. It released a second statement in the afternoon saying law enforcement has been contacted |
Threat | ★★★ | |
|
2023-03-13 18:25:00 | Death registry system in Hawaii had data breach, health department says (lien direct) |
Hawaii's Department of Health says it is sending out breach notification letters after a cyberattack in January gave hackers limited access to the state's death registry. Officials [warned Friday](https://health.hawaii.gov/news/newsroom/department-of-health-to-send-notifications-regarding-unauthorized-access-to-electronic-death-registry-system/) that although death certificates were not accessed, people who recently had a death in the family should “remain vigilant about any remaining unsettled matters such as |
Threat | ★★★ | |
|
2023-03-13 13:01:00 | UK launches new agency to tackle state-sponsored threats to business (lien direct) |
The British government has announced a new body to help businesses and organizations to defend themselves against national security threats, including Chinese attempts at intellectual property theft. The National Protective Security Authority (NPSA) which is part of MI5 - the U.K.'s domestic intelligence service - will offer advice to businesses on “state-sponsored attempts at stealing |
Legislation | ★★★ | |
|
2023-03-13 12:10:00 | Hospital in Brussels latest victim in spate of European healthcare cyberattacks (lien direct) |
A university hospital in Brussels has become the latest institution targeted in a spate of cyberattacks against European hospitals. Ambulances were diverted from the Centre Hospitalier Universitaire (CHU) Saint-Pierre this weekend following the attack in the early hours of Friday morning. Details about the attack and the perpetrators have not yet been disclosed. CHU Saint-Pierre's |
★★★ | ||
|
2023-03-13 10:43:00 | Estonian official says parliamentary elections were targeted by cyberattacks (lien direct) |
Estonia's parliamentary elections this month were unsuccessfully targeted by cyberattacks, one of the country's leading cybersecurity officials told The Record. The elections marked the first time that the majority of Estonians cast ballots using the country's [internet voting system](https://www.youtube.com/watch?v=uz9CUK0Ii6Q). While officials in countries like the United Kingdom have domestically warned that such systems introduce risks |
Threat Guideline | ★★★ | |
|
2023-03-10 12:00:00 | Ransomware tracker: the latest figures [March 2023] (lien direct) |
* Note: this Ransomware Tracker is updated on the 10th day of each month to stay current * Unlike past years, cybercriminals didn't take a break over the winter holidays. The number of victims posted on ransomware extortion sites rose more than 20% in December to 241 organizations - the highest monthly count since April, |
Ransomware | ★★ | |
|
2023-03-09 20:15:00 | Canadian military: Ransomware attack on contractor didn\'t touch defense systems (lien direct) |
Canada's defense department confirmed Thursday that its systems were not affected by a ransomware attack on engineering giant Black & McDonald. Black & McDonald did not respond to repeated requests for comment, but a spokesperson for Canada's Department of National Defence told The Record that it was aware of a ransomware attack on the company. |
Ransomware | ★★★ | |
|
2023-03-09 19:27:00 | Congressman says he was target of \'wrongful\' data searches by FBI (lien direct) |
The lawmaker spearheading the House Intelligence Committee's effort to reauthorize powerful surveillance tools revealed on Thursday that he had been the target of data searches by the FBI. Rep. Darin LaHood (R-IL) [made the disclosure](https://twitter.com/RepLaHood/status/1633886835154796544) while questioning FBI Director Christopher Wray during the panel's annual worldwide threats hearing. He [was tasked last year](https://therecord.media/house-gop-intel-group-prepping-for-surveillance-renewal-fight) to helm |
★★★ | ||
|
2023-03-09 18:15:00 | DC healthcare exchange breach leaked sensitive data of Congress members, staff (lien direct) |
A data breach involving Washington, D.C.'s healthcare exchange platform includes sensitive information of Congress members and staff, the legislative body was informed on Wednesday. According to a letter from Catherine Szpindor, the House's chief administrative officer, the breach leaked the personal information from enrollees on the DC Health Link website. The Daily Caller first obtained |
Data Breach | ★★ | |
|
2023-03-09 12:45:00 | NYC aims to diversify cybersecurity field with new internship program (lien direct) |
A new internship program backed by the city government of New York is launching to diversify the cybersecurity talent pipeline. Run through the New York City Economic Development Corporation (NYCEDC), the internship program is aiming to increase the number of women and people of color in the cybersecurity field by serving as a conduit between |
★★★ | ||
|
2023-03-08 20:00:00 | Supporters of surveillance law must \'lean in\' to transparency, Sen. Warner says (lien direct) |
The chair of the Senate Intelligence Committee on Wednesday repeatedly urged U.S. intelligence leaders to show “courage” in their campaign to renew an expiring surveillance law, warning that a lack of transparency with the American public and dubious policymakers could sink the effort. Last week the Biden administration [launched its push for reauthorization](https://therecord.media/senior-doj-official-warns-lapse-of-surveillance-law-would-harm-cyber-investigations) of Section |
Guideline | ★★ | |
|
2023-03-08 18:35:00 | TSA issues emergency cybersecurity orders for airports and aircraft operators (lien direct) |
The Transportation Security Administration handed down new emergency cybersecurity protocols for airports and aircraft operators that require them to have pre-approved implementation plans for increased security measures. The TSA said it was issuing the cybersecurity amendments “because of persistent cybersecurity threats against U.S. critical infrastructure, including the aviation sector” but did not respond to requests |
★★★ | ||
|
2023-03-08 15:55:00 | Ransomware group says it stole student data from Minneapolis Public Schools (lien direct) |
The ransomware group behind an [attack on Minneapolis Public Schools](https://therecord.media/minneapolis-public-schools-still-investigating-what-caused-encryption-event) posted a public video allegedly showing screenshots of stolen data after the school district said it was using backups to recover from the incident. The school district – which serves about 34,500 students – faced disruptions last week after a ransomware attack damaged some systems. |
Ransomware | ★★ | |
|
2023-03-08 13:15:00 | Australian official demands Russia bring criminal hackers \'to heel\' (lien direct) |
A senior official in Australia criticized the Russian government on Wednesday for failing to properly police cybercriminals based in its jurisdiction. Michael Pezullo, a public servant rather than a politician - currently serving as the secretary of the Department of Home Affairs - said the Russian Federation hosted “the greatest density of cybercriminals, particularly those |
General Information | ★★ | |
|
2023-03-07 21:32:00 | Bipartisan Senate bill would allow for US ban of TikTok (lien direct) |
Twelve U.S. senators introduced bipartisan legislation Tuesday that would give the Commerce Department the ability to ban technology that is deemed a risk to national security.
The Restricting the Emergence of Security Threats that Risk Information and Communications Technology (RESTRICT) Act was devised as a legal apparatus to facilitate the banning of TikTok, one of the biggest social media platforms in the world and one used by more than 100 million U.S. residents.
The app is owned and run by ByteDance, a Chinese company that has faced backlash for several privacy-related controversies in recent years, including the revelation in December that employees [inappropriately obtained](https://www.nytimes.com/2022/12/22/technology/byte-dance-tik-tok-internal-investigation.html) the data of U.S. TikTok users.
The bill's chief sponsor, Sen. Mark Warner (D-Va), argued that it was necessary to combat potential legal challenges to an outright ban of the app by any arm of the U.S. government. He called it a “rules-based” approach, noting that the legislation would apply not only tech from China, but also from adversaries such as Russia, Iran and North Korea.
“We need a comprehensive, risk-based approach that proactively tackles sources of potentially dangerous technology before they gain a foothold in America, so we aren't playing Whac-A-Mole and scrambling to catch up once they're already ubiquitous,” said Warner, who is chairman of the chamber's Intelligence Committee.
During a press conference, Warner compared TikTok to other Chinese technology giants like Huawei and ZTE as well as Russia's Kaspersky Lab. All three are on a [U.S. government list](https://www.fcc.gov/supplychain/coveredlist) of companies that present “unacceptable risk” to U.S. national security.
On Tuesday U.S. National Security Agency Director Paul Nakasone [testified](https://www.reuters.com/world/us/us-nsa-director-concerned-by-tiktok-data-collection-use-influence-operations-2023-03-07/) that he and others are concerned about not only the data from U.S. citizens collected by ByteDance but also its potential use for influence operations. The app Americans see is also vastly different from the one allowed in China.
In a statement to The Record, TikTok spokeswoman Brooke Oberwetter referenced the long-running negotiations between the U.S. Commerce Department and TikTok, arguing that the RESTRICT Act was unnecessary because the White House can simply approve the deal that was negotiated over two years “that it has spent the last six months reviewing."
"We appreciate that some members of Congress remain willing to explore options for addressing national security concerns that don't have the effect of censoring millions of Americans,” Oberwetter said. “A U.S. ban on TikTok is a ban on the export of American culture and values to the billion-plus people who use our service worldwide."
### 'Systematic framework'
On behalf of the White House, national security adviser Jake Sullivan released a statement backing the legislation, saying it would “address the threats we face today, and also prevent such risks from arising in the future.”
“This bill presents a systematic framework for addressing technology-based threats to the security and safety of Americans,” Sullivan said. “This legislation would provide the U.S. government with new mechanisms to mitigate the national security risks posed by high-risk technology businesses operating in the United States.”
FBI Director Christopher A. Wray previously listed a range of concerns about the popular app, including the possibility that it could be used by the Chinese government to control data collection on millions of users or control the recommendation algorithm.
He also warned Congress that it could be used for influence operations or “to control software on millions |
★★ | ||
|
2023-03-07 19:05:00 | Acer says server for repair technicians accessed by hackers (lien direct) |
Taiwanese computer maker Acer has confirmed that it suffered a breach involving the leak of technician documents related to staff manuals, product model documentation and more.
In a statement Tuesday to The Record, the company said there is “no indication that any consumer data was stored on that server.”
“We have recently detected an incident of unauthorized access to one of our document servers for repair technicians,” the company said, noting that the investigation is ongoing.
The statement comes after someone offered 160GB of data for sale on a hacker forum that they claimed came from Acer.
The person selling the database said it had "confidential presentations,” manuals and binaries as well as information on phones, tablets and laptops. The post also says replacement digital product keys and more are included in the database.
Acer has faced several data breaches in recent years, including a headline-grabbing ransomware attack in 2021 that involved a [$50 million ransom demand](https://therecord.media/ransomware-gang-demands-50-million-from-computer-maker-acer) from the REvil cybercrime group. The attack hit the company's back-office network.
The hardware giant also suffered breaches in [2021](https://therecord.media/acer-confirms-second-security-breach-this-year) and [2012](https://www.databreaches.net/acer-india-hacked-20000-user-credentails-leaked/) that involved customer details and login information for Indian retailers and distributors as well as 20,000 user credentials.
Acer is the sixth-largest personal computer maker in the world, with a market share of roughly 6% of all global sales. The company reported [total revenue](https://www.prnewswire.com/news-releases/acer-reports-december-consolidated-revenues-at-nt-22-89-billion-up-21-1-month-on-month-301716400.html#:~:text=9%2C%202023%20%2FPRNewswire%2F%20%2D%2D,ended%20at%20NT%24275.43%20billion.) of about $9 billion in 2022. |
Ransomware | ★★★★ |
To see everything:
Our RSS (filtrered)
