Author: Janet Oravetz reports: Personal information of some Aurora Water customers, such as names, card numbers and expiration dates, may have been compromised through a data breach, according to the city’s water department. The department made an announcement about the security incident on Monday and said customers who used the Click2Gov payment system to make one-time…
Category: Government Sector
US Coast Guard discloses Ryuk ransomware infection at maritime facility
Catalin Cimpanu reports: An infection with the Ryuk ransomware took down a maritime facility for more than 30 hours; the US Coast Guard said in a security bulletin it published before Christmas. The agency did not reveal the name or the location of the port authority; however, it described the incident as recent. Read more on…
UK: Home addresses of Elton John, Gabby Logan, Nadiya Hussain and every other recipient on New Year’s Honours list – including senior police and anti-terrorism officials – are accidentally published by the Cabinet Office
Oops. Ryan Fahey reports: The Cabinet Office uploaded the home and work addresses of more than 1,000 recipients of New Years’ Honours, including Elton John, Ben Stokes, Iain Duncan Smith and TV chef Nadiya Hussain. The work and home addresses of counter-terrorism officials, senior police and Ministry of Defence (MoD) staff were also included in…
Israeli spyware allegedly used to target Pakistani officials’ phones
Stephanie Kirchgaessner reports: The mobile phones of at least two dozen Pakistani government officials were allegedly targeted earlier this year with technology owned by the Israeli spyware company NSO Group, the Guardian has learned. Scores of Pakistani senior defence and intelligence officials were among those who could have been compromised, according to sources familiar with…
Chinese hacker group caught bypassing 2FA
Catalin Cimpanu reports: Security researchers say they found evidence that a Chinese government-linked hacking group has been bypassing two-factor authentication (2FA) in a recent wave of attacks. The attacks have been attributed to a group the cyber-security industry is tracking as APT20, believed to operate on the behest of the Beijing government, Dutch cyber-security firm…
SG: Personal data of Ministry of Defence and Singapore Armed Forces were potentially affected by unrelated attacks on two vendors
Clara Chong reports that two unrelated incidents involving government vendors had put the data of Ministry of Defence and Singapore Armed Forces staff at risk. 2,400 Mindef and SAF leaked after ST Logistics phished: The data included the full names and NRIC numbers, and a combination of contact numbers, e-mail or residential addresses, Mindef said…