Nathan Bomey reports: Detroit Mayor Mike Duggan told the 2014 North American International Cyber Summit in Detroit crowd Monday that cyberattackers recently seized control of an immaterial city database and sought hundreds of thousands of dollars in a digital currency called bitcoin. The attack went nowhere, but Duggan said it was an example of the…
Category: Malware
Link Found in Staples, Michaels Breaches
Brian Krebs reports: The breach at office supply chain Staples impacted roughly 100 stores and was powered by some of the same criminal infrastructure seen in the intrusion disclosed earlier this year at Michaels craft stores, according to sources close to the investigation. Multiple banks interviewed by this author say they’ve received alerts from Visa and MasterCard about cards impacted in the breach at Staples,…
Former Eaton Corp. Employee Indicted For Installing Malware
A federal indictment was unsealed today charging Arturas Samoilovas, age 35, of Stow, Ohio, with one count of transmitting and attempting to transmit computer codes, programs or commands, intending to cause damage to a protected computer, said Steven M. Dettelbach, United States Attorney for the Northern District of Ohio, and Stephen D. Anthony, Special Agent…
MN: Data Breach At Grand Casino Mille Lacs
WCCO reports: The Grand Casino Mille Lacs says approximately 1,600 card transactions were accessed by an unauthorized person and used for fraudulent transactions. After finding out on Sept. 15, 2014, the casino says it immediately engaged a leading forensic investigation firm that determined that malware was used to access certain payment card transactions at the…
ND: Audit: Not making security top concern led to NDUS breach
Tu-Uyen Tran reports that an audit conducted in the wake of NDUS’s breach earlier this year found major problems that went far beyond the few employees who were eventually fired: An email a stranger sent to the North Dakota University System’s computer security officer on the morning of Feb. 7 was the first sign that…
Attackers go back to school: phishing from .edu leads to ZeuS
Ronnie Tokazowski reports: On October 28th, several of our employees reported a wave of suspicious emails. The most peculiar of the bunch originated from an American university. Analyzing the email headers revealed some interesting information: the attackers sent the phishing email from within a compromised .edu domain. Read more and see the screencaps on PhishMe. They do…