Dell Cameron reports: It’s never too early to have your identity stolen, unfortunately. More than 1 million children in the United States were affected by identity theft last year, according to a new study highlighting what’s easily the most overlooked demographic impacted by breaches of personally identifiable information. The study, released Tuesday by Javelin Strategy…
Category: Of Note
Altaba, Formerly Known as Yahoo!, Charged With Failing to Disclose Massive Cybersecurity Breach; Agrees To Pay $35 Million
From the SEC: The Securities and Exchange Commission today announced that the entity formerly known as Yahoo! Inc. has agreed to pay a $35 million penalty to settle charges that it misled investors by failing to disclose one of the world’s largest data breaches in which hackers stole personal data relating to hundreds of millions…
CYBERSECURITY: DHS Needs to Enhance Efforts to Improve and Promote the Security of Federal and Private-Sector Networks
CYBERSECURITY: DHS Needs to Enhance Efforts to Improve and Promote the Security of Federal and Private-Sector Networks GAO-18-520T: Published: Apr 24, 2018. Publicly Released: Apr 24, 2018. VIEW REPORT (PDF, 22 PAGES) What GAO Found In recent years, the Department of Homeland Security (DHS) has acted to improve and promote the cybersecurity of federal and private-sector…
Atlanta spent at least $2.6 million on ransomware recovery
Zack Whittaker reports: Atlanta spent more than $2.6 million on recovery efforts stemming from a ransomware attack, which crippled a sizable part of the city’s online services. The city was hit by the notorious SamSam ransomware, which exploits a deserialization vulnerability in Java-based servers. The ransom was set at around $55,000 worth of bitcoin, a…
Government’s Response to Malware Defendant’s Constitutional Challenge Falls Short
Alexander Berengaut writes: Last summer, Marcus Hutchins, the security researcher who stopped the “WannaCry” malware attack, was arrested and charged for his role in allegedly creating and conspiring to sell a different piece of malware, known as Kronos. As we have previously discussed on this blog, however, the indictment was notable for its lack of…
New Orangeworm attack group targets the healthcare sector in the U.S., Europe, and Asia – Symantec
There’s a new report out from Symantec that is somewhat worrying. Symantec has identified a previously unknown group called Orangeworm that has been observed installing a custom backdoor called Trojan.Kwampirs within large international corporations that operate within the healthcare sector in the United States, Europe, and Asia. First identified in January 2015, Orangeworm has also…