#hacking
#hacking

The Munchables Hack Is Way Worse Than It Seems

Insider attack drained $63 million from Munchables.

Negotiations led to recovery of stolen funds from insider. [ more ]

Hot for Security

North Korea successfully hacks email of South Korean President's aide, gains access to sensitive information

The office of South Korean President Yoon Suk Yeol believes North Korea hacked into the emails of one of its staff members.

The staff member violated security protocols by using a personal email account for official duties. [ more ]

www.independent.co.uk

South Korea says presumed North Korean hackers breached personal emails of presidential staffer

North Korean hackers breached the personal emails of a South Korean President's staff member.

The cyberattack only affected the personal account of the employee and did not compromise the overall security system. [ more ]

Hot for Security

Hacker posts fake story about Ukrainians trying to kill Slovak President

The importance of cybersecurity measures and vigilance in protecting IT systems from malicious hackers. [ more ]

TechCrunch

Researchers say attackers are mass-exploiting new Ivanti VPN flaw | TechCrunch

Hackers are mass exploiting a third vulnerability in Ivanti's VPN appliance, affecting thousands of organizations worldwide.

One of the newly discovered flaws is a server-side request forgery flaw, which is being actively exploited by hacking groups. [ more ]

moreInformation security

china

CyberScoop

US and UK accuse China of cyber operations targeting domestic politics

U.S. government accuses Chinese nationals of hacking operation targeting political targets in the U.S.

Indictment unveiled against Chinese group for breaching personal devices of U.S. officials, dissidents, and companies. [ more ]

BBC News

China tech firm claimed it could hack Foreign Office

Chinese cyber security firm claims ability to hack UK Foreign Office

Leaked documents reveal i-Soon's extensive data extraction activities in multiple countries [ more ]

www.nytimes.com

Leaked Files Show the Secret World of China's Hackers for Hire

Chinese security firm involved in extensive hacking efforts in Asia and targeting domestic surveillance targets.

Leaked documents reveal China's state-backed hackers cooperating with private sector for cyber espionage campaigns globally. [ more ]

Nextgov.com

Chinese hackers embedded in U.S. networks for years, pre-positioning for future attacks, IC warns

China-linked hackers have been operating inside certain U.S. systems for at least five years and are preparing to carry out cyberattacks on critical infrastructure.

The hackers have been using 'living off the land techniques' to hide inside systems and bypass detection. [ more ]

Axios

New intelligence report warns China has been in U.S. critical infrastructure for "at least five years"

China-backed hackers have had access to major US critical infrastructure for at least five years

China's hacking campaign signals an escalation in its willingness to seize US infrastructure [ more ]

Nextgov.com

Cyber, intelligence chiefs urge U.S. to strengthen against Chinese cyber threats

China-backed hacking activities have reached a new level of complexity, and the U.S. must work with private-sector partners to deter cyber threats.

Chinese hackers are targeting critical U.S. infrastructure and other economic and military systems, and the U.S. must better prepare itself to defend against them. [ more ]

morechina

russian-hackers

TechCrunch

Russian spies keep hacking into Microsoft in 'ongoing attack,' company says | TechCrunch

Russian government hackers target Microsoft's source code and internal systems.

Hackers aim to accumulate a picture of areas to attack by using information obtained from Microsoft's systems. [ more ]

New York Post

New York City

NYC cabbies get prison time in Russian hack scheme to skip JFK taxi line

Queens cab drivers sentenced to prison for working with Russian hackers to breach the JFK Airport taxi dispatch system.

The cabbies charged other drivers $10 to skip to the front of the pick-up line and sent part of their earnings to the hackers who helped them access the system. [ more ]

morerussian-hackers

Mail Online

Why celebrities shouldn't get smart speakers: Oxford professor

Smart speakers can make famous people more targetable to hackers due to their recording capabilities.

Cybercriminals can remotely access recordings from smart speakers, potentially harming the victim's organization or family. [ more ]

Mail Online

The terrifying rise of 'voice cloning' scams

Voice cloning using AI is a new form of deepfake emerging, increasingly used by hackers.

Voice cloning technology has become accessible and can be used by almost anyone, requiring only a five-minute audio clip for cloning. [ more ]

critical-infrastructure

Nextgov.com

US disrupts China-linked cyber campaign impacting critical infrastructure, Justice officials say

The U.S. disrupted a China-linked hacking operation targeting critical infrastructure.

The hacking campaign used vulnerable routers to conceal intrusions into U.S. and foreign systems. [ more ]

TechCrunch

US disrupts China-backed hacking operation amid warning of threat to American infrastructure | TechCrunch

China-backed hackers are preparing to cause real-world harm to Americans in the event of a future conflict.

The FBI director described the China-backed hacking group Volt Typhoon as 'the defining threat of our generation.' [ more ]

CyberScoop

morecritical-infrastructure

Sandworm probably wasn't behind Danish critical infrastructure cyberattack, report says

A hacking campaign against Danish critical infrastructure last year believed to be conducted by Sandworm may not actually be the work of the infamous Russian hacking group.

The second campaign in Denmark did not have any IPs associated with Sandworm, leading to uncertainty about whether the two campaigns were related. [ more ]

russian-hackers

ComputerWeekly.com

Microsoft hack: Five questions enterprises should ask their IT leaders | Computer Weekly

Microsoft confirms infiltration by Russian-backed hacking group Midnight Blizzard

No evidence that the hackers had access to customer environments, production systems, source code, or AI systems [ more ]

www.fastcompany.com

Microsoft executives' emails hacked by Russian group, says company

Russian hackers broke into Microsoft's corporate email system and accessed accounts of company leadership and cybersecurity teams.

The same Russian hacking team responsible for the SolarWinds breach was behind the Microsoft intrusion. [ more ]

www.dw.com

Microsoft says Russian hackers accessed executives' emails DW 01/20/2024

A Russian hacking group, Midnight Blizzard, gained access to Microsoft's corporate email system and targeted the accounts of senior executives.

Microsoft believes no customer environments, production systems, source code, or AI systems were accessed, and they will notify customers if any action is required. [ more ]

The Verge

Microsoft "senior leadership" emails accessed by Russian SolarWinds hackers

Microsoft has discovered a nation-state attack on its corporate systems by the Russian state-sponsored group of hackers known as Nobelium.

The hackers were able to access email accounts of some members of Microsoft's senior leadership team late last year. [ more ]

morerussian-hackers

Ars Technica

In major gaffe, hacked Microsoft test account was assigned admin privileges

Hackers gained access to Microsoft's network and monitored top executives' emails by exploiting an aging test account with administrative privileges.

The hackers used the OAuth authorization protocol to create a malicious app and gain persistent access to privileged email accounts. [ more ]

TechCrunch

State-backed hackers are exploiting new Ivanti VPN zero-days - but no patches yet | TechCrunch

Hackers are exploiting two critical vulnerabilities in Ivanti's corporate VPN appliance.

Ivanti confirmed that patches for the vulnerabilities will not be available until the end of the month. [ more ]

www.mercurynews.com

Blue Shield of California members' data stolen a gold mine for thieves'

Sensitive data, including Social Security numbers and birth dates, of Blue Shield of California vision policy holders may have been accessed by hackers.

The breach resulted from a cyberattack on a software tool used for sending and receiving data, and Blue Shield is among thousands of organizations affected. [ more ]

bitcoin

www.fastcompany.com

SIM swapping: the simple way that hackers took over the SEC's X Account

The SEC's Twitter account was hacked and a false announcement about approving bitcoin ETFs was posted, causing a temporary spike in the price of bitcoin.

The hackers used a relatively simple scam called SIM swapping to gain access to the SEC's Twitter account and post the fraudulent announcement. [ more ]

Coindesk

SEC Shut Off Extra Security on X For 7 Months, Letting Hacker Breeze In

A hacker took over the U.S. Securities and Exchange Commission's cell phone and falsely posted about the approval of spot bitcoin ETFs.

The hacker gained access through a SIM swap attack and reset the password for the SEC's Twitter account. [ more ]

Futurism

SEC Twitter Account Hacked to Post Fake Bitcoin News

The SEC's Twitter account was hacked, causing a false announcement about the approval of a Bitcoin ETF and leading to a temporary spike in Bitcoin's price.

The incident highlights the volatility of Bitcoin and the anticipation of a potential SEC announcement regarding a spot Bitcoin ETF. [ more ]

www.nytimes.com

Tech industry

How a Hack of the S.E.C.'s Social Media Account Caused a Bitcoin Frenzy, Briefly

The SEC announced approval of a new investment product tracking the price of Bitcoin, but it was later revealed that the agency's account had been hacked.

The security breach highlights the ongoing pursuit of a Bitcoin exchange traded fund (ETF), with many speculating about the timing of its approval. [ more ]

www.dw.com

Bitcoin surges after US regulator X account hack DW 01/10/2024

Bitcoin price briefly spiked after fake announcement of ETF approval

SEC describes social media post as unauthorized and hacked [ more ]

morebitcoin

Mail Online

I'm a hacker - here are the signs someone like me is inside your phone

Professional hacker Laura Kankaala shares signs that your smartphone may be hacked, including overheating and random green light on the screen.

Warning dots on the screen can indicate that the device's microphone or camera is in use, potentially signaling malicious software or stalkerware. [ more ]

Mail Online

I'm a professional hacker - how I could crack your device in SECONDS

Using out-of-date software can leave your smartphone vulnerable to hackers

Reusing passwords, clicking on dodgy links, and sharing too much information on social media can also put your personal data at risk [ more ]

sfist.com

Google Will Begin Mass-Deleting Unused Accounts on Friday, Purging Accounts Not Used In Two Years

Google will start deleting old, unused Gmail accounts that have not been logged into in two years or longer.

The deletion of accounts is meant to reduce the risk of identity theft, hacking, spam, and phishing.

Google has been sending warning notifications to accounts at risk of deletion, and the purge will only affect personal accounts, not organizational accounts. [ more ]

TechCrunch

3 weeks ago

Hackers are threatening to publish a huge stolen sanctions and financial crimes watchlist | TechCrunch

The stolen World-Check database contains 5.3 million records [ more ]

Cyber Security News

Hackers Claiming XpressBees Data Leak: 95K User Personal Data Leaked

XpressBees experienced a data breach affecting up to 95,000 users' personal information.

Hackers potentially accessed names, addresses, email addresses, phone numbers, and financial details in the breach. [ more ]

ComputerWeekly.com

Chinese hackers responsible for two 'malicious' cyber campaigns against UK | Computer Weekly

Chinese state-affiliated hackers targeted UK parliamentarians and democratic institutions.

UK government applying sanctions to individuals linked to APT31 hacking group. [ more ]

Padailypost

27,000 affected in Stanford police hack

Sensitive information including social security numbers and biometric data were stolen in a hack of Stanford police affecting 27,000 people

Hackers accessed Stanford police network in May and the breach was not discovered until September, leading to potential data misuse [ more ]

ComputerWeekly.com

Ukrainians crack network that stole 100m email, social accounts | Computer Weekly

Cyber criminals arrested in Ukraine for hacking millions of Instagram accounts

Attackers used brute force to access accounts and sold databases on dark web [ more ]

Nature

So ... you've been hacked

Research institutions face cyber threats and hacking attempts regularly.

Academic institutions worldwide have experienced cybersecurity breaches. [ more ]

ReadWrite

3 weeks ago

Video games

Hackers 'steal Ready or Not developer's source code'

Hackers stole 4TB data, including Ready or Not game source code and console builds, no personal info compromised. [ more ]

Polygon

Video games

Apex Legends finals postponed after suffering unprecedented hack

Hackers disrupted North American Apex Legends finals with cheats mid-tournament.

Unprecedented attack on esports event with aimbots and wall hacks given to players during matches. [ more ]

GameSpot

Video games

Google Engineers Hacked The PlayStation Portal And Turned It Into A PSP Emulator

Google engineers hacked the PlayStation Portal to run emulated PSP games.

PlayStation Portal streams games from PS5 but has limited use and inconsistent performance. [ more ]

Iapp

EU data protection

UK, US sanction alleged hackers for role in 14-year campaign

Alleged Chinese state-backed hackers indicted for 14-year campaign targeting foreign entities.

U.S. and U.K. governments issue sanctions against alleged hackers and their front company. [ more ]

Databreaches

EU data protection

UK: Coventry school reprimanded for data breach after IT system 'hacked three times'

Finham Park Multi Academy Trust in Coventry has been reprimanded by the Information Commissioners Office for data breaches.

The school's IT system was hacked three times and 1,843 UK Data Subjects were affected.

The ICO found that the school did not have adequate account lockout or password policies in place. [ more ]

Databreaches

EU data protection

German security researchers at risk of prosecution for "hacking" because of a plain text hardcoded password?

German law classifies security research as hacking, making it risky.

The court ruling in Germany considers circumventing a password protection mechanism as hacking. [ more ]

Futurism

Artificial intelligence

Hackers Can Spy on Your Chats With Almost Any AI, Experts Find

AI chatbot conversations can be easily intercepted by hackers through side-channel attacks.

OpenAI's encryption methods may be flawed, exposing the content of messages exchanged with AI chatbots. [ more ]

www.cnbc.com

Artificial intelligence

'Cyber-physical attacks' fueled by AI are a growing threat, experts say

Widespread AI in the hands of hackers may lead to cyber-physical attacks.

Simulated cyberattacks in labs demonstrated potential for physical damage. [ more ]

Hot for Security

Leak of Acer Philippines employee database appears on hacking forum

Employee data of Acer Philippines leaked after a third-party vendor breach.

Attacker provided stolen employee data for free, possibly with no intent to monetize. [ more ]

ReadWrite

Microsoft details update on Russian-sponsored "ongoing attack"

Midnight Blizzard cyber attack on Microsoft involved password-spraying to access an account.

Microsoft faces ongoing and escalating cyber attacks from Midnight Blizzard, a sophisticated hacker group. [ more ]

ComputerWeekly.com

Nation states buying hacking tools from underground Russian cyber forums | Computer Weekly

Nation states are shopping for malware on Russian cybercrime forums.

Russian-speaking hacking forums offer a wide range of tools and services for cybercriminals.

Nation states are increasingly using underground cybercrime forums to pose as cybercriminals. [ more ]

Databreaches

Privacy technologies

Fraudster's fake data breach claims should remind media to be careful what we report

Reports on alleged hacking incidents should be handled with caution without verification.

Hoaxes in data breaches can lead to reputation damage and financial costs for falsely accused organizations. [ more ]

Databreaches

Privacy technologies

SEC's X account hacked, sharing 'unauthorized tweet' regarding spot bitcoin ETF

The U.S. Securities and Exchange Commission's X account has been hacked.

A tweet regarding bitcoin ETFs was posted from the hacked account, causing confusion and speculation. [ more ]

www.independent.co.uk

Europe news

A German military officer used an unsecured line for a conference call. Russia hacked and leaked it

German military officer used unsecured phone in leaked conference call

Tensions rise between Germany and Russia due to leaked audio [ more ]

Yanko Design - Modern Industrial Design News

Design

Apple AirPods Max get a USB-C port thanks to this clever engineering hack - Yanko Design

Pillonel upgraded AirPods Max to USB-C port before Apple did

He sells the PCBs to encourage others to upgrade their AirPods Max too [ more ]

WIRED

Ransomware Groups Are Bouncing Back Faster From Law Enforcement Busts

Law enforcement's actions against ransomware groups often lead to short-lived disruptions.

Ransomware groups, like BlackCat, can quickly regroup and restart their attacks with impunity. [ more ]

Theregister

U-Haul says 67K customers' data was stolen in cyberattack

Personal data of 67,000 U-Haul customers accessed, but no financial information was stolen.

Identity-related attacks using valid credentials have increased by 71% in 2023. [ more ]

CyberScoop

Microsoft rolls out expanded logging six months after Chinese breach

Microsoft faced scrutiny for charging a premium for security features

Expanded logging made available to federal agencies to enhance cybersecurity [ more ]

www.nytimes.com

Tech industry

Hackers for China, Russia and Others Used OpenAI Systems, Report Says

Hackers with ties to foreign governments have used OpenAI's systems in their cyberattacks.

The hackers have used AI in mundane ways like drafting emails and translating documents. [ more ]

www.vice.com

Feds Want to Ban the World's Cutest Hacking Device. Experts Say It's a 'Scapegoat'

The government of Canada is planning to ban the Flipper Zero, a popular handheld hacking device.

The Canadian government claims, without evidence, that the device is being used to steal cars. [ more ]

ReadWrite

U.S. insights company shows ransomware hackers drew in $1bn across 2023

Ransomware hackers extorted $1bn across 2023, a significant increase from the previous year.

The biggest ransomware attack of 2023 was carried out by the CL0P Ransomware Gang, exploiting a 'Zero-Day' vulnerability. [ more ]

Theregister

Cybercrime gang targeted jobseekers across Asia

A group called 'ResumeLooters' has been stealing personal information from websites operated by job boards and retailers across Asia.

The group used SQL injection and XSS attacks to steal databases, resulting in the theft of over two million email addresses and other personal information. [ more ]

The Verge

Twitter alternative spouts a massive leak

Spoutible's API had a vulnerability that allowed hackers to take full control of users' accounts.

Hackers could obtain users' personal information, hashed passwords, 2FA codes, and password reset tokens. [ more ]

www.theguardian.com

Ex-CIA software engineer sentenced to 40 years for giving secrets to WikiLeaks

Former CIA software engineer sentenced to 40 years in prison for espionage, hacking, and child pornography charges.

Schulte's actions were characterized as the largest data breach in CIA history and one of the largest unauthorized disclosures of classified information in US history. [ more ]

New York Post

Russian ransomware gang claims it stole 'classified and top secret documents' from US intelligence

A Russian hacking group known as BlackCat or ALPHV claims to have infiltrated a tech company that handles classified and top secret documents for US intelligence agencies.

The group is threatening to sell or release more than two dozen documents related to the Defense Counterintelligence and Security Agency if the tech firm does not respond. [ more ]

time.com

Journalists and Lawyers Hacked With Pegasus Spyware in Jordan, Probe Finds

Israeli-made Pegasus spyware was used in Jordan to hack the cellphones of at least 30 people, including journalists, lawyers, human rights and political activists.

Access Now believes this is just the tip of the iceberg and the true number of victims is likely much higher. [ more ]

www.aljazeera.com

Journalists, activists targeted in Jordan with Israeli-made Pegasus spyware

More than 30 people in Jordan, including journalists, lawyers, and activists, had their smartphones hacked with Pegasus spyware.

The true number of victims is likely much higher than reported.

The use of the spyware coincided with an increase in repression of citizens' rights in Jordan. [ more ]

TechCrunch

Europcar says someone likely used ChatGPT to promote a fake data breach | TechCrunch

A user in a hacking forum claimed to have stolen data from Europcar, but Europcar says the data is fake.

The sample data shared online does not match Europcar's records and appears to be generated by ChatGPT. [ more ]

www.housingwire.com

Mortgage and title firms grapple with recent rise in cyberattacks

Increase in cyber security incidents in the mortgage and title industry

Cybersecurity professionals are dealing with more sophisticated hackers [ more ]

Miami Herald

Miami

OnlyFans model charged with killing beau in Miami. Cops say parents tried to hide evidence

The parents of OnlyFans model Courtney Clenney have been arrested for trying to hack into her boyfriend's computer after his murder.

Deborah and Kim Clenney are facing charges related to hacking into Christian Obumseli's computer and are expected to be extradited to Miami. [ more ]

CyberScoop

A tangled mess: Government rules for social media security lack clarity

The SEC's social media account was hacked, leading to a false announcement about a bitcoin exchange-traded fund (ETF).

The incident raises concerns about the lack of cybersecurity measures on government social media accounts. [ more ]

The Verge

Microsoft explains how Russian hackers spied on its executives

Microsoft has revealed details of how the Russian state-sponsored hacking group, Nobelium, gained access to its corporate systems.

The hackers initially used a password spray attack and targeted a non-production test tenant account that did not have two-factor authentication enabled.

Nobelium used their initial access to compromise a legacy test OAuth application, which allowed them to create malicious OAuth applications and access Microsoft's corporate environment. [ more ]

www.vice.com

How to Read Leaked Datasets Like a Journalist

Micah Lee discusses his new book, 'Hacks, Leaks, and Revelations,' which serves as a guide for parsing and organizing hacked datasets.

The book features stories of handling famous cases such as Blueleaks and the Parler leak, and also provides tips for protecting personal data. [ more ]

TechCrunch

23andMe admits it didn't detect cyberattacks for months | TechCrunch

Hackers targeted 23andMe customer accounts for five months before being detected

6.9 million users' data was stolen, including names, birth years, and ancestry reports [ more ]

emptywheel

Left-wing politics

Abbe Lowell's Eight Chessboards - emptywheel

Abbe Lowell is handling multiple lawsuits for Hunter Biden and may be coordinating them to work together.

The hearing for Hunter Biden's hacking lawsuit against Garrett Ziegler has been moved to coincide with Rudy Giuliani's lawsuit, potentially delaying Lowell's disclosure of his theory of venue and hacking. [ more ]

CyberScoop

Russian foreign intelligence hackers gain access to top Microsoft officials, company says

Hackers working on behalf of Russia's foreign intelligence service breached a limited number of Microsoft email accounts.

The attackers used a password spray attack to gain access to the accounts and stole some emails and documents. [ more ]

Ars Technica

Microsoft network breached through password-spraying by Russian-state hackers

Russian state hackers exploited a weak password to access Microsoft's corporate network and exfiltrated emails and documents.

This breach is at least the second time failures in security hygiene have resulted in a breach that could harm customers. [ more ]

NBC News

U.S. cyber watchdog issues emergency directive to federal agencies about remote work software

The U.S. cyber watchdog agency issued an emergency directive requiring federal agencies to protect against a dangerous vulnerability in a software program.

The vulnerability in the software program, Ivanti Connect Secure, has allowed hackers to gain significant access to businesses and government agencies. [ more ]

english.elpais.com

Microsoft says state-backed Russian hackers accessed emails of senior leadership team members

State-backed Russian hackers broke into Microsoft's corporate email system and accessed the accounts of members of the company's leadership team.

The same Russian hacking team responsible for the SolarWinds breach was behind this intrusion. [ more ]

TechCrunch

Hackers breached Microsoft to find out what Microsoft knows about them | TechCrunch

The hacking group Midnight Blizzard, believed to be sponsored by the Russian government, targeted Microsoft's corporate email accounts to find out what information Microsoft has on them.

Microsoft is taking immediate action to make its systems more secure following the incident. [ more ]

Nextgov.com

CISA directs agencies to mitigate widespread VPN bugs

Federal civilian agencies are under emergency orders to address recently discovered flaws in a widely used VPN appliance from Ivanti that is being targeted by hackers linked to China.

The vulnerability allows deep access into the target network, enabling data exfiltration or persistence for other malicious activities. [ more ]

Sacramento Bee

California

Hackers flood chats at California university with gory videos. 'Could really not unsee'

Hackers flooded chat rooms used by UC Irvine students and professors with gruesome videos of human and animal mutilation.

Multiple students were hospitalized and many lost sleep due to the disturbing content.

The university does not manage the Discord servers that were hacked. [ more ]

CyberScoop

After hack, X claims SEC failed to use two-factor authentication

The SEC's Twitter account was hacked and used to falsely claim approval of bitcoin ETFs on X platform.

X accused the SEC of failing to implement strong security features such as two-factor authentication. [ more ]

Ars Technica

SEC says X account was hacked as false post causes bitcoin price swings

The Securities and Exchange Commission's X account was hacked and a false post about bitcoin ETF approval was made.

The incident highlights concerns about the security of government or organizational accounts on X. [ more ]

Entrepreneur

SEC Bitcoin Post, X Account 'Compromised,' Agency Says | Entrepreneur

The SEC's Twitter account was hacked and an unauthorized post about bitcoin ETFs was made.

The post caused a temporary increase in the price of bitcoin before being deleted. [ more ]

Coindesk

Major NFT Indicies Stable After NFT Trader Hack

The Nansen NFT-500 and Blue Chip-10 indexes remained stable after a $3 million NFT theft.

A community effort led to the recovery of most of the stolen NFTs. [ more ]

Theregister

Web design

Ledger JS library poisoned to steal $650K+ from wallets

Malicious code was inserted into Ledger's Connect Kit JavaScript library, resulting in over $610,000 worth of crypto tokens being stolen.

The attack was detected and addressed within 40 minutes, and the compromised file was active for only about two hours. [ more ]

Tripwire

Kelvin Security cybercrime gang suspect seized by Spanish police

A leading member of the malicious hacking group Kelvin Security has been arrested by Spanish police.

Kelvin Security has carried out over 300 attacks in more than 90 countries in the last three years. [ more ]

TechCrunch

US indicts alleged Russian hackers for years-long cyber espionage campaign against Western countries | TechCrunch

U.S. authorities have indicted two hackers linked to Russia's Federal Security Service (FSB) for cyber espionage.

The hackers targeted government officials, think tanks, and journalists using spear-phishing emails. [ more ]

Databreaches

Sellafield nuclear site hacked by groups linked to Russia and China (1)

Sellafield, the UK's most hazardous nuclear site, has been hacked by cyber groups linked to Russia and China

The breaches at Sellafield were first detected in 2015 [ more ]

WIRED

The 23andMe Data Breach Keeps Spiraling

Genetic testing company 23andMe has revealed more details about a data breach that occurred in October, but the situation remains unclear and creates uncertainty for users.

Hackers were able to access a small percentage of user accounts, approximately 14,000, but the number doesn't include those impacted by data scraping from the company's social sharing service.

The attackers collected the personal data of about 5.5 million people who opted into DNA Relatives and an additional 1.4 million users who had their Family Tree profile information accessed. [ more ]

www.npr.org

Iran-linked cyberattacks threaten equipment used in U.S. water systems and factories

An Iran-linked hacking group known as 'CyberAv3ngers' is targeting and compromising multiple U.S. facilities using an Israeli-made computer system.

The hackers have been infiltrating video screens with the message 'You have been hacked, down with Israel. Every equipment 'made in Israel' is CyberAv3ngers legal target.' [ more ]

Nextgov.com

Okta breach includes theft of data on nearly all help desk users, including some feds

Hackers stole a report from identity management company Okta, compromising names and email addresses of users of the company's customer support system.

Data on all other Workforce Identity Cloud and Customer Identity Solution customers was exfiltrated in the hack, impacting Okta's FedRAMP Moderate and DOD IL2 systems.

Okta urged customers to be cautious as the stolen information could be used for phishing or social engineering attacks. [ more ]

CyberScoop

Pennsylvania water facility hit by Iran-linked hackers

Hackers linked to Iran breached a device at a water utility in Pennsylvania, but there was no threat to the availability of water.

The hackers were able to gain control of a remote water station, but did not access the water treatment plant or other parts of the system.

The incident highlights the challenges of securing critical infrastructure against digital breaches. [ more ]

Ars Technica

Hackers spent 2+ years looting secrets of chipmaker NXP before being detected

A hacking group with ties to China targeted NXP, a Netherlands-based chipmaker, for over two years.

The group, known as Chimera or G0114, accessed employee mailboxes and network drives in search of chip designs and intellectual property.

The breach was discovered when the group was detected in a separate company network connected to compromised NXP systems. [ more ]

SecurityWeek

Hacktivism: What's in a Name... It May be More Than You Expect

Hacktivists should be treated as malicious hackers due to the blurred lines between hacking/activism and the potential for harm.

There are three types of hackers: malicious, ethical, and hacktivist, each with different intentions and consequences under the law.

Hacktivism is an evolving problem that requires a better understanding from both the legal system and cyber defenders. [ more ]

Hot for Security

Hackers pose as officials to steal secrets and cryptocurrency for North Korea

A hacking group known as Kimsuky has been accused of impersonating South Korean officials and journalists to steal cryptocurrency for the North Korean regime.

Between March and October 2023, 1,468 people fell victim to Kimsuky's campaign, which attempted to install malware onto their computers.

The attacks targeted government officials, including those in diplomacy, military, and national security, as well as the broader general public. [ more ]

SecurityWeek

In Other News: National Laboratory Breach, Airplane GPS Attacks, Russia Accuses Allies of Hacking

State-sponsored hackers from China and North Korea are responsible for a surge in cyberattacks targeting Russia.

The COO of a cybersecurity firm admitted to hacking hospitals in order to boost his company's business.

A hacker breached hotel networks and attempted to sell stolen credentials while also faking his own death. [ more ]

New York Post

Toys that 'spy' on children are an increasing threat, watchdog warns

Toys that record children's information pose a risk to their safety and privacy.

Smart toys are becoming an increasing security risk due to data collection and hacking.

The U.S. PIRG Education Fund advises researching toys before purchasing them. [ more ]

WIRED