Justin Hendry reports: Australian Signals Directorate chief Mike Burgess has confirmed data was stolen by a state-sponsored actor during February’s malicious attack against Parliament House. In what appears to be the first public admission of the data exfiltration, Burgess told senate estimates last week that a limited amount of non-confidential data had made its way…
Category: Of Note
Pick-Six: Intercepting a FIN6 Intrusion, an Actor Recently Tied to Ryuk and LockerGoga Ransomware
From a recent report by Brendan McKeague, Van Ta, Ben Fedore, Geoff Ackerman, Alex Pennino, Andrew Thompson, Douglas Bienstock of FireEye: Recently, FireEye Managed Defense detected and responded to a FIN6 intrusion at a customer within the engineering industry, which seemed out of character due to FIN6’s historical targeting of payment card data. The intent…
B.C. privacy czar urges fast reporting of security breaches
Louise Dickson and Lindsay Kines report: In the wake of a privacy breach at the B.C. Pension Corporation, B.C.’s privacy commissioner is once again calling on the provincial government to compel public and private bodies to report privacy breaches to his office within days of discovery. Michael McEvoy said the case clearly demonstrates why B.C….
Senate Permanent Subcommittee on Investigations Rips Into Equifax Over Its Massive 2017 Data Breach.
So the Congressional report on Equifax’s massive 2017 databreach was released. The title gives you a clue as to what you can expect to read in it: HOW EQUIFAX NEGLECTED CYBERSECURITY AND SUFFERED A DEVASTATING DATA BREACH STAFF REPORT PERMANENT SUBCOMMITTEE ON INVESTIGATIONS UNITED STATES SENATE The report is 71 pages, and the following is…
CT-GAN: Malicious Tampering of 3D Medical Imagery using Deep Learning
The following is the abstract of a research report that I saw at https://arxiv.org/abs/1901.03597. CT-GAN: Malicious Tampering of 3D Medical Imagery using Deep Learning Yisroel Mirsky, Tom Mahler, Ilan Shelef, and Yuval Elovici (Submitted on 11 Jan 2019 (v1), last revised 3 Apr 2019 (this version, v2)) In 2018, clinics and hospitals were hit with…
Chinese companies have leaked over 590 million resumes via open databases
Catalin Cimpanu reports: Chinese companies have leaked a whopping 590 million resumes in the first three months of the year, ZDNet has learned from multiple security researchers. Most of the resume leaks have occurred because of poorly secured MongoDB databases and ElasticSearch servers that have been left exposed online without a password, or have ended up online…