Summary The U.S. Departments of State, the Treasury, and Homeland Security, and the Federal Bureau of Investigation are issuing this advisory as a comprehensive resource on the North Korean cyber threat for the international community, network defenders, and the public. The advisory highlights the cyber threat posed by North Korea – formally known as the…
Category: Commentaries and Analyses
Ca: Privacy breach company remains part of B.C. health data sharing
Jeremy Hainsworth reports: A medical company hit by an October ransomware data privacy breach affecting 15 million Canadians is again named in a B.C. ministerial order as a company that can share British Columbians’ data. But, say observers, there is no issue for British Columbians to worry about as any liability rests with the government…
FBI says state hackers have broken into US coronavirus research: report
Fox News reports: Foreign government hackers have broken into companies conducting research into COVID-19 treatment and the U.S. healthcare sector, an FBI official reportedly said. Tonya Ugoretz, the FBI Deputy Assistant Director, told participants in an online panel discussion on Thursday that the bureau has seen state-backed hackers looking at a series of healthcare and research institutions. Read more…
Nemty ransomware operation shuts down
Catalin Cimpanu reports: The operators of the Nemty ransomware have announced this week they were shutting down their service after ten months in operation, ZDNet has learned from a source in the infosec community. […] But in an update posted on a dedicated topic on the Exploit hacking forum, the Nemty operator announced yesterday they…
You’re One Misconfiguration Away from a Cloud-Based Data Breach
Suresh Kasinathan writes: Not all instances of data exposure in the cloud are the product of malicious intentions from either internal or external actors. In its “2019 Data Breach Investigations Report” (DBIR), for instance, Verizon Enterprise showed that errors constituted one of the top causes in the data breaches it examined. Verizon’s researchers attributed 21%…
Another Court Significantly Limits the Scope of Criminal CFAA–Sandvig v. Barr
Eric Goldman writes: The plaintiffs want to create fake job profiles to research algorithmic discrimination. Fearing that their research activities would expose them to criminal CFAA prosecution, they challenged the CFAA as violating their First Amendment rights. Venkat blogged a preliminary ruling in the case 2 years ago. Now, the court dismisses the researchers’ suit as moot…