Updates: 1. This story is growing, and Reuters has now updated its reporting. 2. Kim Zetter obtained a report from Microsoft that she posted on Twitter in a thread. MSFT offers instructions on detecting and removing the threat, here. 3. FireEye has also updated their research report, here: ” Highly Evasive Attacker Leverages SolarWinds Supply…
Category: Hack
Brooklyn Defender Services Identifies and Addresses Data Security Incident
December 10 – Today, Brooklyn Defender Services, a public defender organization representing clients in criminal, immigration, and family proceedings, announced that it has identified and addressed a data security incident. Brooklyn Defender Services recently discovered that an unauthorized person gained access to some of Brooklyn Defender Services’ employees’ email accounts. On September 13, 2020, Brooklyn Defender…
VA: Konikoff Dental Associates notifies patients and employees of possible data breach
WAVY reports: Konikoff Dental Associates Harbour View released a statement on its website warning patients of a possible data breach. The statement says the dentistry became aware of the incident on October 11 and it may affect the security of personal information for some patients and employees. Read more on WAVY. The dental practice’s full…
Fax Express leaked database noted by New Jersey
Seen on NJCCIC, a summary of a breach noted by them on December 10: A hacked database belonging to Fax Express, an office equipment supply store based in Ocean County, NJ was exposed, revealing approximately 560,000 compromised usernames and dehashed passwords. The breached database is connected to the domain shredderstoo[.]com and is assessed to be owned…
Chinese embassy blames hackers for retweet of Trump’s claim that Democrats cheated in election
Arjun Kharpal reports: The Chinese embassy in the U.S. said its Twitter account was hacked after it retweeted a baseless claim from President Donald Trump that the Democrats cheated in the election. Read more on CNBC, although the remainder of the report seems to be more about Trump and the election and less about the embassy’s Twitter…
Hackers are selling more than 85,000 SQL databases on a dark web portal
Update: To read the original research report on the threat actors and sale/auction on the dark web, see this report by Guardicore. Catalin Cimpanu reports: More than 85,000 SQL databases are currently on sale on a dark web portal for a price of only $550/database. The portal, brought to ZDNet‘s attention earlier today by a security…