AUSTIN, Texas – Ukrainian national Mark Sokolovsky was sentenced today to 60 months in federal prison for one count of conspiracy to commit computer intrusion. According to court documents, Sokolovsky, 28, conspired to operate the Raccoon Infostealer as a malware-as-a-service or “MaaS.” Individuals who deployed Raccoon Infostealer to steal data from victims leased access to…
Defending Data Breach Class Actions
Mark P. Henriques of Womble Bond Dickinson has a content-rich post for defense lawyers: Class actions arising from data breach represented the fastest growing segment of class action filings. In 2023, more than 2000 class actions were filed, more than triple the amount filed in 2022.1 These cases were filed in federal and state courts…
Credential phishing attacks up over 700 percent
Ian Barker reports: Phishing remains one of the most significant cyber threats impacting organizations worldwide and a new report shows credential theft attacks surged dramatically in the second half of 2024, rising by 703 percent. The report from SlashNext shows that overall, email-based threats rose by 202 percent over the same period, with individual users receiving…
No need to hack when it’s leaking: Cisco edition
The hacker and forum owner known as “IntelBroker” announced that he and others breached Cisco systems and obtained source code and other valuable information. In a forum post where they offered “partial Cisco” data, they admit that a Cisco error had enabled them to access the data: In October 2024, Cisco accidentally left open their…
Dragos Industrial Ransomware Analysis: Q3 2024
Abdulrahman H. Alamri and Lexie Mooney of Dragos write: The third quarter (July – September) of 2024 brought transformative shifts to the ransomware landscape, emphasizing its dynamic and continuously evolving nature. The ransomware threat ecosystem remained highly active in the third quarter, fueled by new groups, rebranding of existing entities, expansion of initial access broker…
LastPass breach comes back to haunt users as hackers steal $12 million in two days
Solomon Klappholz reports: A major data breach at password manager firm LastPass in 2022 is still causing mayhem two years later, with cyber criminals using stolen information to carry out further attacks. According to data collated by crypto investigator ZachXBT, hackers stole $12.38 million in cryptocurrency from LastPass users on 16 and 17 December. The attackers drained…