Bill Toulas reports: Russian state hackers APT28 (Fancy Bear/Forest Blizzard/Sofacy) breached a U.S. company through its enterprise WiFi network while being thousands of miles away, by leveraging a novel technique called “nearest neighbor attack.” The threat actor pivoted to the target after first compromising an organization in a nearby building within the WiFi range. The attack…
Clyde & Co write: The new Regulations on the Management of Network Data Security (《网络数据安全管理条例》) [1] (the “Regulations”) were issued by the State Council of the People’s Republic of China (“China”) on 24 September 2024 and will come into force on 1 January 2025. With a focus on network data [2], the Regulations supplemented and…
Reporting this via a Google translation of an article originally published in French. Valéry Rieß-Marchive reports: The brand provides its affiliates with Linux software allowing them to maintain complete control over the data stolen from their victims. The file is called “storage_linux_x64.” It is an executable for Linux. It is among the data of two…
In December 2023, DataBreaches added Rockford Gastroenterology Associates (“RGA”) to a list of possible ransomware victims after seeing a listing for them on the leak site for threat actors known as RA World. However, it wasn’t until September 2024 that RGA posted a notice on its website, and not until October that they notified HHS…
Here’s today’s reminder that it’s not always the huge-number breaches that pose the most risk or actual physical danger to people. Anosha Shariq reports: A helpline for Yakuza victims faces a shocking data breach, exposing personal details of 2,500 individuals and sparking fears of retaliation and safety risks. A tragic irony has unfolded as the…
Daniel Croft reports: The incident was claimed by CyberN—–s members IntelBroker and EnergyWeaponUser, who originally said it was a Tesla EV charging station database containing files that belonged to Tesla. However, thanks to a tipoff by researcher DarkWebInformer and IntCyberDigest, the threat actors amended the listing to say it was a “random 3rd party company…