Micaela McMurrough, Ashden Fein, Caleb Skeath, and Matthew Harden of Covington and Burling write: On January 19, 2023, the National Institute of Standards and Technology (“NIST”) published a Concept Paper setting out “Potential Significant Updates to the Cybersecurity Framework.” Originally released in 2014, the NIST Cybersecurity Framework (“CSF” or “Framework”) is a framework designed to assist organizations with…
Month: January 2023
Australian man given two-year jail sentence for $69K phishing scams
Eileen Yu reports: An Australian man has been sentenced to jail for more than two years over an SMS phishing scam, during which he stole AU$100,000 ($69,751) and targeted 450 victims. The Sydney Local Court found the man guilty of various cybercrime offences, including obtaining and supplying data with intent to commit a computer offence….
Twitter GodMode still available to all engineers, following hack of Apple and other accounts
Ben Lovejoy reports: Twitter GodMode – an internal tool that hackers used to tweet from high-profile accounts, including Apple, back in 2020 – remains available to all of the company’s engineers, according to a new report today. […] The Washington Post reports that a whistleblower reported this to Congress back in October, and it has now been shared…
Court records were lost in debilitating Vanuatu cyber attack
There’s another update to the crippling ransomware attack the archipelago of Vanuatu suffered months ago. RNZ reports: The Vanuatu Chief Justice has confirmed that court records were lost in the ransomware attack on government agency computer systems late last year. Vincent Lunabek said the courts were able to save some offline data concerning the registration…
Riot Games hack: Source codes of League of Legends and TFT stolen by hackers in latest cyber attack; source code allegedly up for auction
IANS reports: Riot Games was a victim of a recent cyber attack over the weekend. After an analysis of the attack, Riot Games has revealed that the source code for its popular video games League of Legends and TFT (Teamfight Tactics) were stolen in the recent cyber attack. In addition, the source code of a legacy anti-cheat platform was also stolen…
Puma investigates claims of leaking more than 230k customers’ data (updated)
Paulina Okunytė reports: Private data allegedly belonging to more than 230,000 Puma customers in Chile has been found on a hacker forum. A threat actor has listed an 84MB-strong dataset for sale that allegedly belongs to the multinational sportswear manufacturer. The cybercriminal or criminals behind the dataset listing claim that it is from Puma’s Chilean…