Stav Namer/Maariv reports: A cyber criminal who goes by the name “sangkanicil” is claiming to have stolen the personal information of around seven million Israelis, approximately 80% of Israel’s population, by hacking into a website used by municipalities – City4U. If this is the truth – it could be one of the biggest and most significant hacks…
Category: Hack
North Korean hackers breach prominent defector’s accounts in targeted attack
Jeongmin Kim and Nils Weisensee report: In a multilingual social engineering attack, North Korean hackers broke into several accounts of a prominent defector and used their access to send a malicious document to a contact working on DPRK issues, an NK News investigation found. The attackers also used one of the accounts to message journalists at NK News in…
ALTDOS claims some of their servers were seized but they did not lose data
It would be great if the good guys had backups as good as the threat actors have. Threat actors who call themselves “ALTDOS” have re-emerged after a brief hiatus that had left this site wondering if something had happened to them following a joint advisory about them. ALTDOS has attacked a number of ASEAN firms,…
Nevada Restaurant Services, Inc. Provides Notice Of Data Privacy Event
From the I-have-questions department: Nevada Restaurant Services reported that they experienced a breach in January of this year and that the threat actor was able to copy some of their files. The type of data varied by person but the notification stated that the scope of information potentially involved includes individuals’ name, date of birth,…
Juniper Breach Mystery Starts to Clear With New Details on Hackers and U.S. Role
Jordan Robertson reports: Days before Christmas in 2015, Juniper Networks Inc. alerted users that it had been breached. In a brief statement, the company said it had discovered “unauthorized code” in one of its network security products, allowing hackers to decipher encrypted communications and gain high-level access to customers’ computer systems. Further details were scant,…
SEC fines three companies over hacked employee email accounts
Catalin Cimpanu reports: The US Securities and Exchange Commission has fined three brokerage firms on Monday for neglecting to secure employee accounts, incidents that led to the exposure of their customers’ data. Cetera Advisor Networks LLC, Cetera Investment Services LLC, Cetera Financial Specialists LLC, Cetera Advisors LLC, and Cetera Investment Advisers LLC (collectively, the Cetera entities); Cambridge…