Stay Ahead of Cyber Threats – Daily Security Insights, Powered by AI
It’s been three months since the Securities and Exchange Commission’s cyber disclosure rules took effect and rather than creating a deluge of incident revelations, only a trickle has emerged.
Companies have submitted 12 initial Form 8-K, Item 1.05 filings, the form the SEC began requiring businesses to file for material cybersecurity incidents on Dec.…
A purported leak of the Moscow Clinical Research Center’s database, attributed to a threat actor, has raised concerns over data privacy and security. The MKNC, officially known as MKNC named after A.S. Loginova, stands as a prominent multidisciplinary institution within the Moscow Department of Health, tracing its origins back to its formation in 2013 from the Central Research Institute of Gastroenterology.…
The LulzSec Muslims collective has recently directed its cyber warfare efforts towards Saudi ministries, executing a series of distributed denial-of-service (DDoS) attacks aimed at disrupting the functioning of their websites.
Among the institutions targeted are prominent entities such as the Ministry of Interior, Ministry of Education, and Ministry of Communications.…
Emerging reports indicate that a threat actor is actively peddling unauthorized access to a Canadian firm specializing in the design and manufacture of customized transportation equipment. Despite the company’s substantial annual revenue of $9.8 million, it appears to have fallen victim to this security breach. The access being offered by the threat actor grants custom domain admin privileges within the company’s network.…
Fraud Management & Cybercrime , Ransomware
Review of Attacks Finds Inconsistent Data Leaks and Victim Naming, Broken Promises Mathew J. Schwartz (euroinfosec)
• March 18, 2024
A pig in a poke. Counting on ransomware groups is likely to leave victims oinking. (Image: Shutterstock)Double extortion demands from ransomware groups aren’t subtle: Pay us, or we’ll publish stolen internal data for all the world to see.…
A threat actor has reportedly put up for sale a database allegedly obtained from the Department of Medical Examination and Treatment Management under Vietnam’s Ministry of Health. According to the actor, the database contains approximately 257,000 user records, including fields such as ID, name, ID card details, phone numbers, dates of birth, addresses, and email addresses.…
Editor’s note: The following is a guest article from Michael Kosak, senior principal intelligence analyst at LastPass.
The White House recently issued an executive order authorizing the attorney general to prevent the large-scale transfer of Americans’ sensitive personal data — such as health, geolocation and financial data, to countries of concern — including China and Russia.…
Three months since the launch of the Securities and Exchange Commission’s cyber incident reporting rule, companies are grappling with the question of when the impact of a breach or attack is considered material.
The rule, which went into effect Dec. 18, requires publicly traded firms to report an incident within four business days of determining materiality. …
LAPSUS$ ransomware FUD is now up for sale, offering a menacing array of features to potential buyers. Its capabilities include encrypting Disk C, disabling SecureBoot, UEFI, Windows Recovery, and Windows Bitlocker, alongside adding Startup programs, employing AntiTaskManager, blocking Access Path, and hiding the TaskBar. Additionally, an impending update will introduce functionalities such as Windows Defender Killer, Regedit Disable, and Antivirus Stopper.…
A threat actor known as IntelBroker has reportedly leaked the database of PYLC, a Mexican insurance company. The breach has affected approximately 63,000 users, compromising a vast array of records related to policies, quotes, premiums, fees, discounts, taxes, and more. The leaked data includes detailed information such as quote and policy numbers, user IDs for various roles, start and end dates of policies, as well as extensive metadata related to insurance categories, branches, statuses, and transactions.…
A threat actor is purportedly selling unauthorized Remote Desktop Protocol (RDP) access to a prominent American law firm. With an annual revenue estimated between $400 to $500 million, the law firm presents an enticing target for cybercriminals. The threat actor asserts access to critical servers, including a 32TB backup server with 11TB free, an accessible local intranet, a 17TB storage server, and hardware resources comprising 4011 host machines.…
Nevada-based Nations Direct Mortgage said more than 83,000 customers were affected by a late 2023 data breach that leaked Social Security numbers and other sensitive information.
In filings with regulators in Maine and California, the company said it discovered a cybersecurity incident on December 30 that prompted an investigation.…
Documentation startup Mintlify says dozens of customers had GitHub tokens exposed in a data breach at the start of the month and publicly disclosed last week.
Mintlify helps developers create documentation for their software and source code by requesting access and tapping directly into the customer’s GitHub source code repositories.…
Allegedly, CyberDragon, in collaboration with the Cyber Army of Russia, launched DDoS attacks targeting German defense firms supplying weapons to the Kiev regime. The affected companies include KNDS (KMW + Nexter Defense Systems), a prominent European defense company, and ESG Elektroniksystem- und Logistik-GmbH, a German entity specializing in electronic systems and logistics solutions for aerospace, defense, and other sectors.…
Jack 249, a notorious threat actor, has made a bold announcement regarding the successful infiltration of various entities within the Emirates. The targets of this cyber intrusion reportedly include Emirati companies, educational institutions, hospitals, websites, and platforms. The actor boasts possession of numerous databases harboring sensitive information belonging to citizens and employees.…
The Russian Evilics group has allegedly infiltrated a website belonging to the US Defense Logistics Agency, specifically targeting ASSIST.
ASSIST serves as a critical platform for standardization management activities within the Defense Standardization Program (DSP), facilitating the development, coordination, distribution, and management of defense and federal specifications and standards.…
Japanese tech giant Fujitsu discovered that several of its systems were infected by malware and warns that the hackers stole customer data.
Fujitsu is the world’s sixth largest IT services provider, employing 124,000 people and having an annual revenue of $23.9 billion. Its portfolio includes computing products like servers and storage systems, software, telecommunications equipment, and a range of services, including cloud solutions, system integration, and IT consulting services.…
A threat actor has purportedly put up for sale a database belonging to an American real estate company. The alleged database comprises 1,754,593 lines of data, including personal identity details and Social Security Numbers (SSNs). Additionally, the threat actor claims to possess scans of various documents, such as home buyer applications, verification forms, W2 forms, tax certificates, and titles.…
The data privacy company Onerep.com bills itself as a Virginia-based service for helping people remove their personal information from almost 200 people-search websites. However, an investigation into the history of onerep.com finds this company is operating out of Belarus and Cyprus, and that its founder has launched dozens of people-search services over the years.…
Fujitsu, one of Japan’s leading technology conglomerates, has detected a significant security breach within its systems, revealing that malicious actors have infiltrated its infrastructure and potentially compromised customer data. With a workforce of 124,000 employees and an annual revenue of $23.9 billion, Fujitsu stands as the world’s sixth-largest IT services provider, offering a diverse array of computing products, software solutions, telecommunications equipment, and consulting services globally.…