Aisyah Llewellyn reports: The first that Indonesia heard about the hacker now known as Bjorka came when news broke at the beginning of September of a massive data leak. Some 1.3 billion SIM card registration details were stolen and listed for sale on a dark web online marketplace. The data was harvested in part as…
Author: Dissent
Held to Ransom: How Cyberattacks Can Become a Legal and Regulatory Odyssey for a Private Investment Fund
Ryan P. Blaney, Margaret A. Dale, Dorothy Murray, Todd J. Ohlms, and Jonathan M. Weiss of Proskauer write: …. Cyberattacks, by their very nature, know no borders and nor therefore should a private fund’s response The first of this two-part series considers immediate incident response steps and analyses whether to pay a ransom, from U.S.,…
HC3: APT41 and Recent Activity
The Office of Information Security and the Health Sector Cybersecurity Coordination Center (HC3) have published a new threat brief on APT41. The brief is TLP:WHITE. Overview Chinese State-Sponsored Threat Actor Members of APT41 have been actively tracked since 2012 Also Known As: Double Dragon, Barium, Winnti, Wicked Panda, Wicked Spider, TG-2633, Bronze Atlas, Red Kelpie…
DESORDEN leaks more data from Indonesia; “Indo data is officially worthless”
The DESORDEN group recently announced that due to the flood of personal information on Indonesians, they were giving up on attacking Indonesian entities. But they also noted that they already had some attacks in progress that they would still be leaking. Today, they announced one of those attacks on a popular hacking-related forum where data…
Morgan Stanley to pay $35 million fee for ‘astonishing’ customer data disposal practices
Jonathan Greig reports: Morgan Stanley will pay a $35 million penalty to settle charges from the U.S. Securities and Exchange Commission for wide-ranging failures around properly disposing of hard drives and servers containing the personal information of some 15 million customers. The company did not respond to requests for comment, but the SEC said in…
AU: ‘One of the most serious cyberattacks’: Customer data exposed in Optus hack
Nick Bonyhady reports: Hackers have breached Optus’ systems in one of the largest cyberattacks in Australian history, accessing names, dates of birth, phone numbers, email addresses, physical addresses and driver’s licence numbers of millions of the telecommunications giant’s customers. Well-placed sources not authorised to speak publicly said that up to 9 million customers had been…