Kartikay Mehrota reports: Cybersecurity experts, law enforcement agencies and governments urged the White House to root out safe havens for criminals engaging in ransomware and step up regulation of cryptocurrencies, the lifeblood of hackers, in the hopes of controlling a growing wave of attacks. These are two of 48 recommendations made by a task force…
Category: Of Note
Experian API Exposed Credit Scores of Most Americans
Brian Krebs reports: Big-three consumer credit bureau Experian just fixed a weakness with a partner website that let anyone look up the credit score of tens of millions of Americans just by supplying their name and mailing address, KrebsOnSecurity has learned. Experian says it has plugged the data leak, but the researcher who reported the finding says…
In major ruling, 2nd Circuit says no circuit split on data breaches and standing
Alison Frankel reports: For years, I’ve been writing about a split among the federal circuits on whether data breach victims can establish a right to sue in federal court merely by showing that they are at increased risk of identity theft. Just a couple of months ago, when the 11th U.S. Circuit Court of Appeals held in…
Developing — Babuk claims to have hacked Metropolitan D.C. Police
Update 8:30 pm: The police have now confirmed unauthorized access to their server. The FBI is investigating. The threat actors known as Babuk have added the Metropolitan Police D.C. to their leak site, adding, “We will not comment this time: Even such an organization has huge security gaps, we advise them to get in touch…
It: Union of Comuni Colli del Monferrato, cyber attack: hackers publish data
Marco A. De Felice reports: The Avaddon ransomware group publishes screenshots of some data stolen during the cyber attack on the Unione di Comuni Colli del Monferrato, but by mistake it puts the wrong Unione (Unione dei Colli DiVini in the heart of Monferrato) under DDoS attack. Oops? But as Marco notes, that wasn’t the…
A ransomware gang made $260,000 in 5 days using the 7zip utility
Lawrence Abrams reports: A ransomware gang has made $260,000 in just five days simply by remotely encrypting files on QNAP devices using the 7zip archive program. Starting on Monday, QNAP NAS users from all over the world suddenly found their files encrypted after a ransomware operation called Qlocker exploited vulnerabilities on their devices. While most ransomware groups…