Purvi Khemani reports: A Reddit user recently shared a troubling experience on the platform. They claimed they were fired from TCS (Tata Consultancy Services) after reporting a security issue. Using the handle @Personal_Stage4690, they posted on the ‘Developers India’ subreddit, saying, “I reported a security incident in tcs where my manager ware (was) making employees…
Category: Miscellaneous
CISA’s KEV catalog making a positive difference to defenders
Jonathan Greig reports that a CISA resource is having a positive effect at both a federal level as well as for non-governmental organizations: The Cybersecurity and Infrastructure Security Agency (CISA) has run its Known Exploited Vulnerabilities (KEV) catalog for nearly three years and it has quickly become the go-to repository for software and hardware bugs actively being exploited by hackers around the world. Experts…
Ransomware gang targets nonprofit providing clean water to world’s poorest
Alexander Martin reports: Water for People, a nonprofit that aims to improve access to clean water for people whose health is threatened by a lack of it for drinking and sanitation, is the latest organization to have been hit by ransomware criminals. The ransomware-as-a-service gang Medusa listed Water for People on its darknet site Thursday…
Ransomware attack targets global Lutheran group
YLE reports: The Lutheran World Federation (LWF) has fallen victim to cyber extortion, Finnish news agency STT reports on Sunday. The Finnish Evangelical Lutheran Church is one of the largest members of the LWF, a global Lutheran organisation. Earlier this month perpetrators carried out ransomware attacks on the federation and released screenshots of the captured…
Major Us Museums Suffer Cyberattack Fallout
ArtForum reports: Several US arts institutions were rendered unable to display their collections online after a cyberattack struck a tech service provider used by the museums, the New York Times reports. Among those affected by the breach targeting Gallery Systems, which aids cultural institutions in managing internal documents and displaying works digitally, were the Museum of Fine…
U.S. water utilities were hacked after leaving their default passwords set to ‘1111,’ cybersecurity officials say
Wilfred Chan reports: Providers of critical infrastructure in the United States are doing a sloppy job of defending against cyber intrusions, the National Security Council tells Fast Company, pointing to recent Iran-linked attacks on U.S. water utilities that exploited basic security lapses. The security council tells Fast Company it’s also aware of recent intrusions by hackers linked to China’s…