Jonathan Greig reports: Password manager 1Password and cybersecurity and networking giant Cloudflare were targeted by hackers following the breach affecting single sign-on provider Okta, according to statements from both companies. First reported by Ars Technica and later confirmed in a blog post directly from company chief technology officer Pedro Canahuati, 1Password said it detected suspicious activity on its Okta instance that…
Category: Business Sector
Cisco IOS XE threat actors hide their tracks, find other zero-days
Catalin Cimpanu writes: Over the past three days—since our last newsletter edition—the situation around the latest zero-day attacks targeting Cisco IOS XE devices has drastically changed, and we feel the need to cover it in our featured section and provide a short summary of what has been going on. Although these attacks have been taking…
Hackers Stole Access Tokens from Okta’s Support Unit
Brian Krebs reports: Okta, a company that provides identity tools like multi-factor authentication and single sign-on to thousands of businesses, has suffered a security breach involving a compromise of its customer support unit, KrebsOnSecurity has learned. Okta says the incident affected a “very small number” of customers, however it appears the hackers responsible had access…
France frees the two biggest Spanish hackers
The following is from a machine translation of an article by Luis F. Duran that appeared at El Mundo on October 18: Last Thursday, French Justice released two Spanish hackers, aged 26 and 28, arrested last summer on charges of attacking 26 French companies from which they supposedly demanded million-dollar ransoms. After the investigation and the…
Another small firm suffers a serious ransomware attack: Cadre Services gets mauled by AlphV
There are some data leaks that make you shake your head and wonder about how a firm responded to a ransomware attack. This is one of them. Cadre Services (previously known as Premier Staffing) is a Wisconsin-based company providing employment and staffing services for office professionals. They have been in business since 1994. In a…
Casio discloses data breach impacting customers in 149 countries
Sergiu Gatlan reports: Japanese electronics manufacturer Casio disclosed a data breach impacting customers from 149 countries after hackers gained to the servers of its ClassPad education platform. Casio detected the incident on Wednesday, October 11, following the failure of a ClassPad database within the company’s development environment. Evidence suggests that the attacker accessed customers’ personal…