Dan Goodin reports: FishPig, a UK-based maker of e-commerce software used by as many as 200,000 websites, is urging customers to reinstall or update all existing program extensions after discovering a security breach of its distribution server that allowed criminals to surreptitiously backdoor customer systems. The unknown threat actors used their control of FishPig’s systems…
Category: Business Sector
Three Iranian Nationals Charged With Engaging In Computer Intrusions And Ransomware-Style Extortion Against U.S. Critical Infrastructure Providers
NEWARK, N.J. – An indictment was unsealed today charging three Iranian nationals with allegedly orchestrating a scheme to hack into the computer networks of multiple U.S. victims, U.S. Attorney Philip R. Sellinger and National Security Division Assistant Attorney General Matthew Olsen announced today. As alleged in the indictment, from October 2020 through the present, Mansour…
Twitter’s cybersecurity flaws pose national security risk, whistleblower tells Congress
Kelsey Reichmann reports: Cybersecurity failures at Twitter are endangering users’ data and putting national security at risk, the company’s former security chief, Peiter “Mudge” Zatko, told lawmakers at a hearing on Tuesday. Zatko appeared before the Senate Judiciary Committee to testify about allegations he made against the social media giant earlier this year. In reports…
It’s like a veritable fire sale on Indonesians’ personal data
Indonesia’s private data protection bill cleared another hurdle and could be voted into law this week. As Bloomberg reports: Data operators could face up to five years in jail and a maximum fine of 5 billion rupiah ($337,000) for leaking or misusing private information, according to Indonesia’s new data privacy bill set to be passed…
Vasile Mereacre testifies against former Uber security chief in criminal trial
Maria Dinzeo reports: When hackers Vasile Mereacre and Brandon Glover teamed up in 2016 and began scouring Github for exploitable security flaws, they weren’t looking to hack any one company specifically. But Uber’s lax security quickly made the ride-hail giant the pair’s top target. Testifying Monday in the former Uber security head Joe Sullivan’s criminal obstruction…
Bits ‘n Pieces (Trozos y Piezas)
Br: National Fund for Educational Development (FNDE) hit by ransomware On September 3, the RansomExx group leaked 62 TB of files from the National Fund for Educational Development (FNDE). FDNE is a federal agency of the Ministry of Education, and is responsible for implementing programs such as the National School Nutrition Program. FNDE provided a…