From the Institute for Security & Technology: A Comprehensive Framework for Action Ransomware is no longer just a financial crime; it is an urgent national security risk that threatens schools, hospitals, businesses, and governments across the globe. This is not a problem that any one entity can solve. Over 60 experts from industry, government, law…
Category: Of Note
White House Urged to Address Surge in Ransomware Attacks
Kartikay Mehrota reports: Cybersecurity experts, law enforcement agencies and governments urged the White House to root out safe havens for criminals engaging in ransomware and step up regulation of cryptocurrencies, the lifeblood of hackers, in the hopes of controlling a growing wave of attacks. These are two of 48 recommendations made by a task force…
Experian API Exposed Credit Scores of Most Americans
Brian Krebs reports: Big-three consumer credit bureau Experian just fixed a weakness with a partner website that let anyone look up the credit score of tens of millions of Americans just by supplying their name and mailing address, KrebsOnSecurity has learned. Experian says it has plugged the data leak, but the researcher who reported the finding says…
In major ruling, 2nd Circuit says no circuit split on data breaches and standing
Alison Frankel reports: For years, I’ve been writing about a split among the federal circuits on whether data breach victims can establish a right to sue in federal court merely by showing that they are at increased risk of identity theft. Just a couple of months ago, when the 11th U.S. Circuit Court of Appeals held in…
Developing — Babuk claims to have hacked Metropolitan D.C. Police
Update 8:30 pm: The police have now confirmed unauthorized access to their server. The FBI is investigating. The threat actors known as Babuk have added the Metropolitan Police D.C. to their leak site, adding, “We will not comment this time: Even such an organization has huge security gaps, we advise them to get in touch…
It: Union of Comuni Colli del Monferrato, cyber attack: hackers publish data
Marco A. De Felice reports: The Avaddon ransomware group publishes screenshots of some data stolen during the cyber attack on the Unione di Comuni Colli del Monferrato, but by mistake it puts the wrong Unione (Unione dei Colli DiVini in the heart of Monferrato) under DDoS attack. Oops? But as Marco notes, that wasn’t the…