Laura Dobberstein reports: Indian infosec firm CloudSEK last week claimed it found records describing 750 million Indian mobile network subscribers on the dark web, with two crime gangs offering the trove of data for just $3,000. CloudSEK named CYBO CREW affiliates CyboDevil and UNIT8200 as the vendors of a 1.8TB trove, which contains mobile subscribers’…
Category: Business Sector
SolarWinds Seeks Dismissal of ‘Unfounded’ SEC Cybersecurity Suit
Skye Witley reports: SolarWinds Corp. issued a full-throated denial of wrongdoing in how it handled one of the worst cyberattacks in history in a Friday court filing seeking the dismissal of US Securities and Exchange Commission allegations that its software security representations defrauded investors and violated rules on controls. SolarWinds argued that it disclosed risks…
Facebook suffers big loss in lawsuit against data-scraping company
Jon Brodkin reports: One year after Meta sued a data-scraping company, a federal judge this week threw out Meta’s breach-of-contract claim because the defendant obtained only public data from Facebook and Instagram. Meta sued Bright Data in January 2023, making claims of breach of contract and tortious interference with contract. Bright Data is an Israeli company that collects data…
Ottawa-based cyberfraudster sentenced to 2 years
CBC reports: An Ottawa man convicted on charges related to a ransomware attack affecting hundreds of victims was sentenced to two years behind bars on Friday. Matthew Philbert, 33, was arrested by the Ontario Provincial Police (OPP) in late 2021 following a lengthy investigation that also involved the RCMP, the FBI and Europol. Philbert was accused of co-ordinating…
23andMe’s data hack went unnoticed for months
23andMe may try to blame the victims for their massive data breach, but how are they going to blame anyone for it taking them five months to detect the breach? Mariella Moon reports: In late 2023, genetic testing company 23andMe admitted that its customer data was leaked online. A company representative told us back then that the bad…
HPE: Russian hackers breached its security team’s email accounts
Lawrence Abrams reports: Hewlett Packard Enterprise (HPE) disclosed today that suspected Russian hackers known as Midnight Blizzard gained access to the company’s Microsoft Office 365 email environment to steal data from its cybersecurity team and other departments. Midnight Blizzard, aka Cozy Bear, APT29, and Nobelium, is a Russian state-sponsored hacking group believed to be part…