Viraj Shah reports: Cryptopia, a cryptocurrency exchange based in New Zealand recently announced that it had been hacked and suffered significant losses. The exact details of the hack and how much the exchange has lost remain vague at this point with just a few tweets from the exchange providing a small amount of information. Read…
Category: Business Sector
Chinese hackers, APT10, may have struck Keidanren system in 2016
Tatsuya Sudo reports: A Chinese group that has been accused by the U.S. government in a series of cybertheft cases around the world is now suspected in the 2016 hacking of the computer system used by Keidanren (Japan Business Federation). Keidanren officials announced in November 2016 that 23 computers used in the federation’s system had…
Directors and Officers Settle Over Yahoo Hack: A New Chapter in Derivative Litigation?
Craig A. Newman of Patterson Belknap writes: Yesterday, a Superior Court judge in Santa Clara, California approved what is believed to be the first monetary award to a company in a data breach-related derivative lawsuit. Until now, such breach-related derivative cases have settled through a combination of governance changes and modest awards of attorney’s fees. But…
A Nasty Trick: From Credential Theft Malware to Business Disruption
Kimberly Goody, Jeremy Kennelly, Jaideep Natu, Christopher Glyer write: FireEye is tracking a set of financially-motivated activity referred to as TEMP.MixMaster that involves the interactive deployment of Ryuk ransomware following TrickBot malware infections. These operations have been active since at least December 2017, with a notable uptick in the latter half of 2018, and have…
UK hacker “BestBuy” sentenced for Mirai botnet attack on Lonestar
Catalin Cimpanu does some great reporting on the sentencing of “BestBuy:” A UK court sentenced today a 30-year-old man to two years and eight months in prison for using a DDoS botnet to viciously attack and take down internet connectivity in Liberia in the fall of 2016. The man is 30-year-old Daniel Kaye, also known…
Attributions Have Consequences: The Danger of Calling Out Cyberattackers
Leonid Bershidsky reports: The $100 million lawsuit that Mondelez, the maker of Oreos and Cadbury chocolate, has brought against Zurich Insurance Group shows that governments should be more careful about identifying the would-be culprits in putative cyberwars: Such claims can have unintended consequences, and can sometimes harm businesses. […] Mondelez claimed $100 million on its…