Zack Whittaker reports: Atlanta spent more than $2.6 million on recovery efforts stemming from a ransomware attack, which crippled a sizable part of the city’s online services. The city was hit by the notorious SamSam ransomware, which exploits a deserialization vulnerability in Java-based servers. The ransom was set at around $55,000 worth of bitcoin, a…
Category: Of Note
Government’s Response to Malware Defendant’s Constitutional Challenge Falls Short
Alexander Berengaut writes: Last summer, Marcus Hutchins, the security researcher who stopped the “WannaCry” malware attack, was arrested and charged for his role in allegedly creating and conspiring to sell a different piece of malware, known as Kronos. As we have previously discussed on this blog, however, the indictment was notable for its lack of…
New Orangeworm attack group targets the healthcare sector in the U.S., Europe, and Asia – Symantec
There’s a new report out from Symantec that is somewhat worrying. Symantec has identified a previously unknown group called Orangeworm that has been observed installing a custom backdoor called Trojan.Kwampirs within large international corporations that operate within the healthcare sector in the United States, Europe, and Asia. First identified in January 2015, Orangeworm has also…
Welcome new readers from Seton Hall Law
Welcome to all new readers from Seton Hall Law School and attendees at the Artificial Intelligence Conference this week. On this site, you’ll find news stories on data breaches from all sectors and from around the world. You’ll also find original investigations and reporting on breaches that you won’t find on other sites. Browse the…
Businesses are using injunctions to stop hackers publishing secrets – or they’re trying to!
Matt Burgess reports: “Do not pretend that I do not exist, do not ignore me or break the deadlines,” was the message from one unknown hacker to a British company targeted in February 2018. The person stole a “very large quantity of data”. Both the hacker and the hacked company are the subject of a…
Tech & Security Companies Sign Cybersecurity Tech Accord
David Bender writes: Today, 34 global technology and security companies announced that they have signed a Cybersecurity Tech Accord, which publicly commits them “to protect and empower civilians online and to improve the security, stability and resilience of cyberspace.” The signatories include Cisco, Dell, Facebook, HP, Intuit, and Microsoft. The text of the Accord references…