John E. Dunn reports: Someone on the dark web is touting for sale an unusual database a lot of people might pay handsomely to get their hands on. Another rich cache full of sensitive company data, or perhaps something stolen from a military power? In fact, according to the security company that verified its authenticity, Cyble,…
Category: Miscellaneous
Southern Ute Indian Tribe says U.S. Treasury Dept. leaked confidential information
The Durango Herald reports: The Southern Ute Indian Tribe is demanding an investigation into the U.S. Treasury Department after the tribe said the department leaked confidential tribal information given to it as part of an effort to obtain funds under the Coronavirus Aid, Relief and Economic Security Act. On Monday, all state, local and tribal…
Campaign Gaffe: How a Voter Contact App Exposed Credentials and Code
UpGuard reports: UpGuard can now disclose that a code repository including exposed access credentials for Campaign Sidekick, a current voter contact, survey, and canvassing app used by Republican campaigns, has been secured. The code repository was within a “.git” directory which was configured for public access and hosted on Campaign Sidekick’s primary website. The directory contained…
Elite hackers target WHO as coronavirus cyberattacks spike
Raphael Satter, Jack Stubbs, and Christopher Bing report: Elite hackers tried to break into the World Health Organization earlier this month, sources told Reuters, part of what a senior agency official said was a more than two-fold increase in cyberattacks. WHO Chief Information Security Officer Flavio Aggio said the identity of the hackers was unclear,…
European electricity association warns of office network breach
Steve Ranger reports: An association of European electricity companies has confirmed that hackers have breached its office network. “ENTSO-E has recently found evidence of a successful cyber intrusion into its office network,” the association said in a statement. It added that a risk assessment had been performed and contingency plans are now in place to reduce…
The RNC stopped paying a data firm after a serious breach — then paid a mysterious LLC with the same address
The RNC Stopped Paying a Data Firm After A Serious Breach. Then It Paid A Mysterious LLC With the Same Address. Three years after the Republican National Committee publicly sidelined the sullied firm, it paid an LLC with the same address $900,000 for “data services.” The RNC said it wouldn’t “waste any more breath explaining…