ABC News reports: Baltimore County Public Schools failed to act on several state recommendations to help mitigate cyber attacks before a hack disrupted school operations and cost the school system millions of dollars in damages and repairs, according to a report from a state inspector general. BCPS was hacked using a phishing email in November 2020 —…
Author: Dissent
NCSC: Russian and Iranian hackers targeting UK politicians, journalists
John Leonard reports: NCSC, the cyber security arm of GCHQ, has issued an advisory warning about the targeting of media and political organisations by hackers from Russia and Iran. The groups mentioned, SEABORGIUM from Russia and TA453 (alias APT42 and Charming Kitten) from Iran, are believed to be associated with the governments of those countries….
Bloke allegedly stole, sold private info belonging to ‘tens of millions’ globally
Jessica Lyons Hardcastle reports: A man suspected of stealing personal data belonging to tens of millions of people worldwide and selling that info on cybercrime forums has been arrested by Dutch police. The 25-year-old now faces charges of violating data privacy and computer trespassing laws, and laundering cryptocurrency valued at around $491,000, according to media…
French national extradited to U.S. as alleged member of ShinyHunters
Sebastien Raoult was extradited today from Morocco to the U.S. in response to an extradition request from the U.S. Raoult was indicted for alleged participation in ShinyHunters criminal activities. No other French nationals who were also indicted have been extradited, and the U.S. has not even sought their extradition. France repeatedly refused efforts by Raoult’s…
Ransomware : comment traque-t-on les gains des cybercriminels ? (Ransomware: how do we track the profits of cybercriminals?)
Valéry Rieß-Marchive explains how LeMagIT staff tracked Conti and Avaddon in 2021 using available tools and Blockchain activity and how developments since then have made tracking easier in some respects. He writes, in part (machine translation): A major development has occurred in the past two years, besides the Conti Leaks : awareness of bitcoin ransom payment…
Former employee exfiltrated some employee data improperly — Credit Suisse AG
On January 20, the data protection officer for Credit Suisse AG filed a breach notification with the Maine Attorney General’s Office. According to their notice, a breach occurred on or about January 1, 2016. The exact date was unknown, and the breach reportedly wasn’t discovered until December 21, 2022. The summary description of the incident…