Catalin Cimpanu reports: The US Federal Bureau of Investigation sent out on Tuesday a security alert to K12 schools about the increase in ransomware attacks during the coronavirus (COVID-19) pandemic, and especially about ransomware gangs that abuse RDP connections to break into school systems. The alert, called a Private Industry Notification, or PIN, tells schools…
Category: Of Note
Warning: ‘Invisible God’ Hacker Sold Access To More Than 135 Companies In Just Three Years
Thomas Brewster reports: Major antivirus companies, banks, insurance providers, government agencies, large hotels, wineries, restaurants, airlines. Think of almost any kind of company and there’s a good chance a prolific, financially-motivated hacker known as Fxmsp has broken into it, or attempted to, according to a report released Tuesday. Dubbed the “invisible god of networks,” he’s a suspected…
Suspected UMPC hacker accused of stealing employee data from 65,000 UPMC employees arrested in Detroit
Torsten Ove reports: A man accused of hacking the human resources databases at the University of Pittsburgh Medical Center starting in 2014 and stealing the data of 65,000 employees was arrested Tuesday in Detroit. Justin Sean Johnson is under indictment in Pittsburgh on charges of conspiracy, wire fraud and aggravated identity theft in connection with…
Statement by CasualX in response to “false statements” by vpnMentor
Their press release, in its entirety: TORONTO, June 18, 2020 /PRNewswire/ — CasualX, a leading hookup app clarified false statements in a recent report by vpnMentor’s research team. According to the report, CasualX is one of the affected apps in a data breach incident discovered by security researchers on May 24. The research was led by Noam Rotem and Ran Locar…
If you’re despairing at staff sharing admin passwords, look on the bright side. That’s CIA-grade security
Shaun Nichols reports: The CIA was so focused on developing whizzbang exploit code, it left any thought of basic computer security principles on the kitchen counter before dashing off to work each morning. That oversight led to the super-agency inadvertently spilling its hacking tools ultimately into the hands of WikiLeaks, which duly disclosed details of the spies’…
Privnotes.com Is Phishing Bitcoin from Users of Private Messaging Service Privnote.com
Brian Krebs reports: For the past year, a site called Privnotes.com has been impersonating Privnote.com, a legitimate, free service that offers private, encrypted messages which self-destruct automatically after they are read. Until recently, I couldn’t quite work out what Privnotes was up to, but today it became crystal clear: Any messages containing bitcoin addresses will be automatically altered…