IntelBroker Claims Breach of Apple, Leaks Purported Source Code for Several Internal Tools
T-Mobile denies IntelBroker's hack claims, Cryptosecurity firm accused of stealing $3m during "white hat" hack of Kraken exchange, much more
Cynthia B Brumfield
Ransomware Attack Shuts Down US Defense Contractor and Major Forklift Maker Crown Equipment Corp., Company Asks Workers to File for Unemployment
Qilin demands $50m ransom to end London hospitals' paralysis, AMD probes ransomware attack claimed by IntelBroker, much more
Snowflake Hackers Demand Up to $5 Million as Hacking Scheme Enters Extortion Stage
Signal president says EU CSAM scanning threatens web security, DragonForce hit Oahu transit services with ransomware attack, Cleveland still coping with ransomware attack, Law enforcement portal hackers plead guilty, Cryptoscammers target Trump supporters, New malware campaign uses fake browsers, Suspected Chinese actors targeting F5 BIG-IP appliances for espionage, much more
Ringleader of Scattered Spider Allegedly Arrested in Spain
Empire Market operators charged, Identities of MuddyWater and Darkbit leaders allegedly exposed, Hacker claims Snowflake accounts were accessed through third-party, LA county public health attack exposed personal data for more than 200K, Thousands of UK train riders were subject to Amazon facial recognition, Amazon planned to circumvent GitHub's
Best Infosec-Related Long Reads for the Week of 6/8/24
Immoral Pentagon disinformation campaign threatened Filipino lives, Volt Typhoon could lead to wartime disruption, Internet privacy's shifting baseline syndrome, LLM agent teams can exploit zero days more than half the time, LLM agents are capable of deception Metacurity is pleased to offer our free and premium subscribers this
Microsoft Postpones Widely Lambasted Recall Feature to Test Security Improvements
Microsoft CEO grilled by House Committee on security fails, More suspects arrested related to Desjardins breach, Republicans drum Stanford Internet Observatory out of existence, Nakasone to join OpenAI board, Snowflake ends internal investigation, UwU offers $5m bounty following second breach, DPRK is targeting Brazilian crypto exchanges, Clearview AI offers novel
To Protect Federal Contracts, Microsoft Ignored Security Expert's Warnings About Flaw That Led to Solar Winds Breach, Report
Hacker gained access to tracking company Tile's internal tools, Ukraine busts Conti and LockBit hacker as part of Operation Endgame, Canadian cops bust four men for Desjardins breach, Mozilla is blocking anti-censorship extensions, Google issues 50 patches including one for zero-day exploited in the wild, Toronto school system
London Hospitals and Surgeries to Face Disruption for 'Many Months' Due to Ransomware Attack
Coathanger Chinese cyberespionage campaign much larger than previously known, Pure Storage is latest Snowflake victim, Light set of fixes for Patch Tuesday, JetBrains warns of critical vulnerability, TellYouThePass gang exploits PHP RCE, Threat actors impersonate GitHub's teams, Adobe vows to never train on AI, much more
UK and Canada Launch Joint Probe Into 23andMe Breach While District Judge Says Bankruptcy Is Imminent
Mandiant confirms that lack of customer MFA caused Snowflake breaches, Apple introduces Private Cloud Compute and password app at WWDC 2024, Microsoft and Google will offer rural hospitals free or discounted cybersecurity services, Hackers steal $20m from UwU in ongoing exploit, ShinyHunters disappears sparking rumors of arrest, Japan's
It's Unclear How Many LockBit Victims Are Covered by the FBI's 7,000 Decryption Keys
Microsoft makes changes to Recall following searing criticism, Lending Tree latest victim of data theft from Snowflake service, NYT source code leaked on 4chan, Cleveland shutters City Hall following a cyber incident, 'Hacktivists' are DDoS'ing European political parties, NHS appeals for blood donors following Qilin hospital
Best Infosec-Related Long Reads for the Week of 6/1/24
FBI-controlled encrypted phones took down drug kingpins, Open source investigator Bellingcat evolves as falsified information surges, Drone police pose a dilemma for poor residents, Twitter deplatforming reduced misinformation and disinformation, Fact-based inoculation needed to reduce misinformation, AI chop shop produced mounds of error-ridden 'news' articles Metacurity is pleased
Fears Over Recall Feature Deepen After Researcher Knocks Down Microsoft's Last Remaining Defense
500 Snowflake credentials found linked to info-stealing malware, FCC launches BGP NPRM, Ukrainian man busted thanks to Operation Endgame, New campaign seeks to steal Ukrainian military info, Panasonic Australia hit by Akira ransomware attack, Daixin Team claims ransomware attack on city of Dubai, Third-party breach exposes 1.9m CoinGecko users,