Guy Faulconbridge reports: Russia’s Federal Security Service (FSB) said on Thursday it had uncovered an American espionage operation that compromised thousands of iPhones using sophisticated surveillance software. Moscow-based Kaspersky Lab said dozens of its employees’ devices were compromised in the operation. The FSB, the main successor to the Soviet-era KGB, said in a statement that…
Author: Dissent
BlackByte attacks City of Augusta, GA and demands a ransom of $2 million
Marco A. De Felice aka @amvinfe writes: In this article we will not only address the part relating to the attack carried out by BlackByte on the IT systems of the City of Augusta, the theft of tens of GB of data or the real amount of the ransom requested by the ransomware group. Above…
Hong Kong privacy watchdog warns data management firm over possible exposure of credit histories of 180,000 people
Sammy Heung reports: Hong Kong’s privacy watchdog has threatened to take legal action against a data management firm for failing to protect the credit histories of about 180,000 people from unauthorised access. The Office of the Privacy Commissioner for Personal Data on Thursday said it received a complaint in December 2021 from an individual who…
Radiology practice suffers ‘significant’ cyberattack
Radiology Business reports: An Oregon radiology practice suffered a “significant” cyberattack over the Memorial Day weekend, according to published reports. Medford Radiology Group has retained a team of computer forensics experts to help aid in its response. The 75-year-old practice also has alerted partner organizations such as the Asante and Providence hospital systems after learning of the incident on…
Yet Another Toyota Cloud Data Breach Jeopardizes Thousands of Customers
Dark Reading reports: Toyota Motor Corp. today announced its discovery of yet another data breach — this time, two misconfigured cloud services were found leaking 260,000 car owners’ personal information over a seven-year period. This discovery comes after the car manufacturer conducted an investigation of its cloud features in the wake of announcing earlier in…
Barracuda zero-day abused since 2022 to drop new malware, steal data
Sergiu Gatlan reports: Network and email security firm Barracuda today revealed that a recently patched zero-day vulnerability had been exploited for at least seven months to backdoor customers’ Email Security Gateway (ESG) appliances with custom malware and steal data. The company says an ongoing investigation found that the bug (tracked as CVE-2023-2868) was first exploited…