Dutch police have made another arrest involving an alleged hacker. It sounds like they identified and arrested this individual fairly quickly, which raises questions about whether this suspect had terrible OpSec or if the police had other sources of leads that enabled them to identify and arrest them. There is nothing in their release that…
Category: Business Sector
Uber’s former Chief Security Officer sentenced to three years probation for covering up massive data breach
SAN FRANCISCO – Joseph Sullivan was sentenced to serve a three-year term of probation and ordered to pay a fine of $50,000, announced First Assistant United States Attorney Stephanie M. Hinds and FBI San Francisco Special Agent in Charge Robert K. Tripp. The sentence was handed down by the Hon. William H. Orrick, United States…
Persistent attackers: Eurasia Group believes it has been dealing with the same attackers since 2020
Some attackers are harder to kick out and keep out. From a notification letter to a state attorney general’s office by external counsel for Eurasia Group, a consulting firm in New York: In December 2020, Eurasia Group discovered suspicious activity within its email system. Eurasia Group immediately launched an investigation, with the assistance of third-party…
Promising Jobs at the U.S. Postal Service, ‘US Job Services’ Leaks Customer Data
Brian Krebs reports: A sprawling online company based in Georgia that has made tens of millions of dollars purporting to sell access to jobs at the United States Postal Service (USPS) has exposed its internal IT operations and database of nearly 900,000 customers. The leaked records indicate the network’s chief technology officer in Pakistan has been hacked…
IT giant Bitmarck shuts down customer, internal systems after cyberattack
Jessica Lyons Hardcastle reports: German IT services provider Bitmarck has shut down all of its customer and internal systems, including entire datacenters in some cases, following a cyberattack. The company, one of the largest service providers for German health insurers, said no customer, patient, or insured individuals’ data had been accessed in the security breach…
T-Mobile discloses second data breach since the start of 2023
Sergiu Gatlan reports: T-Mobile disclosed the second data breach of 2023 after discovering that attackers had access to the personal information of hundreds of customers for more than a month, starting late February 2023. Compared to previous data breaches reported by T-Mobile, the latest of which impacted 37 million people, this incident affected only 836 customers….