Lawrence Abrams reports: Pharmaceutical giant Novartis says no sensitive data was compromised in a recent cyberattack by the Industrial Spy data-extortion gang. Industrial Spy is a hacking group that runs an extortion marketplace where they sell data stolen from compromised organizations. Yesterday, the hacking group began selling data allegedly stolen from Novartis on their Tor…
Category: Hack
CISA Alert (AA22-152A): Karakurt Data Extortion Group
Summary The Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), the Department of the Treasury (Treasury), and the Financial Crimes Enforcement Network (FinCEN) are releasing this joint Cybersecurity Advisory (CSA) to provide information on the Karakurt data extortion group, also known as the Karakurt Team and Karakurt Lair. Karakurt actors have…
FBI thwarts cyberthreat against Boston Children’s Hospital by hackers sponsored by Iranian government
WCVB reports: Hackers sponsored by the Iranian government tried to get into the computer systems of Boston Children’s Hospital last year; however, they were stopped with the help of the Boston Division of the FBI, officials announced Wednesday. […] In the summer of 2021, the FBI said officials received a report from another intelligence agency…
Today’s exercise in reading between the lines
A recent notification by Aon had DataBreaches wondering exactly what went on with their incident response. Consider their description of what happened: What Happened? On February 25, 2022, Aon identified a cyber incident that, upon investigation, impacted a limited number of systems. Once the incident was discovered, Aon immediately retained leading cybersecurity firms to assist…
Jailed Israeli private detective hired Indian hackers in job for Russian oligarchs: Court filing
TheWeek reports: An Israeli private investigator, currently awaiting his sentence in the US, used Indian hackers to conduct surveillance operations for ultra-wealthy Russians, according to a Reuters report. Reuters reported last year that Israeli private detective Aviram Azari was accused of hiring the Indian hacking firm BellTroX on behalf of powerful clients. Independent journalist Scott…
GitHub: Nearly 100,000 NPM Users’ credentials stolen in the April OAuth token attack
Pierluigi Paganini reports: GitHub provided additional details about the incident that suffered in April, the attackers were able to steal nearly 100K NPM users’ credentials. In April, GitHub uncovered threat actors using stolen OAuth user tokens to gain access to their repositories and download private data from several organizations. […] The threat actors allegedly obtained the…