Brian Krebs writes: The U.S. Department of Justice (DOJ) recently revised its policy on charging violations of the Computer Fraud and Abuse Act (CFAA), a 1986 law that remains the primary statute by which federal prosecutors pursue cybercrime cases. The new guidelines state that prosecutors should avoid charging security researchers who operate in “good faith” when finding and reporting…
Category: Commentaries and Analyses
Pysa shuttered its leak site before it ever dumped data from more than half a dozen schools. Here’s what we know so far.
The education sector has always been a relatively easy target for cybercriminals. One group in particular — Pysa — earned a reputation for its ransomware attacks on schools. Despite analyses and alerts in March, 2021 by threat intel firms and the U.S. government indicating that Pysa was a major threat to the education sector in…
US General Says American Hackers Conducted Offensive Operations To Support Ukraine: Report
Anwesha Majumdar reports: As the ravaging Russia-Ukraine war has reached its 99th day, the chief of the United States’ Cyber Command, General Paul Nakasone, claimed that ‘offensive operation’ in support of war-torn Ukraine have been carried out by US military hackers. During an exclusive interview with Sky News, General Nakasone detailed how the separate “hunt forward” operations allowed…
CISA Alert (AA22-152A): Karakurt Data Extortion Group
Summary The Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), the Department of the Treasury (Treasury), and the Financial Crimes Enforcement Network (FinCEN) are releasing this joint Cybersecurity Advisory (CSA) to provide information on the Karakurt data extortion group, also known as the Karakurt Team and Karakurt Lair. Karakurt actors have…
WeLeakInfo.to and Related Domain Names Seized
WASHINGTON – The FBI and the U.S. Department of Justice announced today that they have seized the internet domain name weleakinfo.to and two related domain names, ipstress.in and ovh-booter.com, following an international investigation into websites allowing users to buy access to stolen personal information or to perform attacks on victim networks. The announcement was made…
FBI thwarts cyberthreat against Boston Children’s Hospital by hackers sponsored by Iranian government
WCVB reports: Hackers sponsored by the Iranian government tried to get into the computer systems of Boston Children’s Hospital last year; however, they were stopped with the help of the Boston Division of the FBI, officials announced Wednesday. […] In the summer of 2021, the FBI said officials received a report from another intelligence agency…