- Metacurity
- Archive
- Page 1
Archive
Best Infosec-Related Long Reads for the Week of 5/4/24
A peek into the Cyber Army of Russia's motivations, Russia is exploiting the campus protests, MAGA Republicans swallow state-backed misinformation, How a college kid got rich off tracking ID scams, ByteDance execs call the shots for US TikTok employees, Is Project Texas still real?, Murdoch may have used phone hacking to boost business interests
Feds to Launch Project Fortress to Protect Financial System From Nightmare Attack
Dell warns of breach affecting 49 million customers, Biden admin to require minimum cyber standards for hospitals, Cyberattack crisis deepens at Ascension, CISA Vulnrichment plan aims to alleviate NIST's NVD woes, London Drugs attack was not ransomware, Google fixes Chrome zero day exploited in the wild, The Mask APT group resurfaces after ten-year dormancy, much more
Another Major Healthcare Provider, Ascension, Hit With a Cyber Attack
Scattered Spider now targeting banks and insurance companies, British Columbia government hit with a cyber attack, Zscaler takes test environment offline amid breach rumors, F5 fixes two high-severity bugs, Nearly 52K Tinyproxy instances vulnerable to critical RCE flaw, Microsoft launched air-gapped generative AI for intel community, Nearly 70 software makers sign CISA secure-by-design pledge, Two face voter data breach charges in MI, Boeing confirms LockBit $200m ransom demand, LockBit claims Wichita attack, Apex Legends hacker returns, much more
LockBit Mastermind Revealed by Operation Cronos, Sanctioned by US, UK and Australia
TikTok files suit to stop ban, Vast China-based network of fake online designer brand shops steals data and money, US revokes licenses for Huawei chips and laptops, UK names and blames payroll contractor in armed services breach, BetterHelp settles with FTC for sharing customer data with advertisers, Wiz raises $1 billion in funding round, much more
Chinese Hack of UK Defense Ministry Resulted in Massive Military Personnel Data Breach
State Department unveils new strategy for securing cyberspace, Germany recalls its Russian ambassador following hacker attacks, Ransomware group released large volume of NHS patient data, Technique shows VPN users can connect to rogue servers, Kronos hacker sends $25m to Tornado Cash, much more
Microsoft Unveils New Security Promises in Wake of Blistering CSRB Report
LockBit site reemerges with promises of new information, Suspected Russian cybercrime kingpin pleads partially guilty to money laundering, Fsociety hack of Bitfinex 'seems fake' CTO says, Wichita hit with ransomware attack, Android malware campaign breaches Finnish bank accounts, Microsoft previews zero trust DNS, much more
Best Infosec-Related Long Reads for the Week of 4/27/24
How TikTok's missteps led to legislation that might ban it, Thousands of young web scammers in West Africa are raking in hundreds of millions, A shady AI tool is used in violent crime cases, Databreaches.net gets studied by academic researchers, How Bob Kahn helped create the internet
Germany Blames Russia for Attack on Social Democrat Party
Security agencies say Russian hackers have hit more water plants, Man sentenced to 6.5 years for selling counterfeit Cisco gear, Israeli man wanted by US busted in London for PR firm espionage, Microsoft warns that April patches break VPN connections, Kimsuky exploits DMARC for phishing, CISA's KEV speed remediation, Microsoft adds security chiefs, much more
UnitedHealth CEO Admits Paying $22 Million Ransom, Says a Third of Americans Affected by Breach
REvil associate sentenced to 13-plus years, Lawmakers in New South Wales fear exposure in clubs' IT vendor breach, Hackers breach Dropbox Sign, Indonesia working with four Israeli spyware vendors, Docker Hub used to deliver malware and phishing scams, Iran hackers impersonate journalists and activists, FCC seeks to bar Chinese labs in telecom gear testing, much more
White House Issues a Modernized Critical Infrastructure Protection Policy
Finnish hacker sentenced to six-plus years for psychotherapy clinic hack and extortion, US identities in foreign spy reports soared last year, Qantas blunder allowed passengers to see other passengers' data, Non-bank lender Firstmac was hacked, Marriott cops to using weaker algorithm at the time of its massive breach, White House embraces skill-based cyber hiring, much more
FCC Fines Telco Giants $200 Million for Sharing Customers' Location Data Without Consent
UnitedHealth breach began with Citrix flaw exploit, Telegram yanks and then restores Ukraine security agency access, TikTok ban could extend CapCut video editor, Canadian lawmakers in an uproar over Chinese hacker targeting, Google blocked 2.28 million Android apps last year, Apple leaves EU Safari users exposed to web tracking, much more
Coffee County Shut Down Access to State Voter Registration System Following Cyberattack
Okta warns of unprecedented spike in credential stuffing attacks, Spy.pet crumbles after Discord ban, Ukraine hacking group claims attack on Russian telecom provider, Belarus hacktivists claim attack on country's security agency, UK bans devices that come with weak passwords, Canada's London Drugs temporarily shutters 79 stores following cyber incident, much more