Just catching up with this great report by Ralph Satterson and Matthew Bodner of AP. It provides a great example of how innocent researchers need to remain vigilant about being played by spies. Six years ago, a Russian-speaking cybersecurity researcher received an unsolicited email from Kate S. Milton. Milton claimed to work for the Moscow-based…
Category: Of Note
Was LabMD Hacked? A Key Issue in Lawsuit Against FTC Lawyers
Craig A. Newman of Patterson Belknap writes: Did LabMD, the now-defunct cancer testing company, expose sensitive patient information with shoddy data security practices as U.S. regulations have charged, or was the company victimized by a private forensics firm extorting it for business – raising the troubling question of whether the entire case against LabMD was…
Jury Convicts Anonymous Hacker Who DDoSed Children’s Hospital, Later Got Lost at Sea
Catalin Cimpanu reports: A member of the Anonymous hacker collective was found guilty this week in a trial for a series of cyber-attacks the man had conducted in 2014, including some aimed at children’s hospitals. The hacker —Martin Gottesfeld, 32, of Sommerville, Massachusetts— was one of the main driving forces behind the #OpJustina Anonymous campaign….
Three members of notorious “FIN7” criminal ring in custody for attacking more than 100 companies
The Department of Justice announced a stunning arrest today of key players in one of the most damaging threat actors in the last decade. Kudos to all involved in their arrests. You can read the DOJ’s full press release below, but let’s start with a quote from a FIN7 hunter: “FIN7 is the most prolific and…
TRAI Chairman’s dumb idea has frightening consequences
From CNN-News18, a follow-up to the dumb challenge the TRAI Chairman threw down on Twitter: Having published his Aadhaar number online and challenging hackers to try and “harm him”, TRAI chairman RS Sharma opened himself up to attack in more ways than one. Things took a grave turn on July 30, when Sharma’s daughter, Kavita…
Yale University notifying 119,000 that hackers stole their Social Security numbers and details in 2008-2009
Between April, 2008, and January, 2009, hackers accessed and exfiltrated data on 119,000 individual affiliated with the university. The hacked data included the individuals’ names, Social Security numbers, date of birth (in most cases), and e-mail addresses and physical addresses in some cases. Not knowing about the hack at the time, Yale did nothing. And…