AP reports: The federal personnel agency whose records were plundered by hackers linked to China announced on Monday the temporary shutdown of a massive database used to update and store background investigation records after newly discovering a flaw that left the system vulnerable to additional breaches. There is no evidence the vulnerability has been exploited…
Category: Of Note
FBI Cyber Division Bulletin on Tools Reportedly Used by OPM Hackers
Public Intelligence reports: The following bulletin was released to private industry partners June 5, 2015. According to an article from Reuters, one of the remote access tools (RAT) described in the bulletin, called Sakula, is directly linked to the hack of the Office of Personnel Management (OPM) that was disclosed earlier this month. Other publications have directly…
Florida telemarketer, under FTC watch, suffers data breach
Jeremy Kirk reports: A Florida-based computer tech support call center has suffered a data breach, with customer records being abused by fraudsters trying to get access to online bank accounts. The data breach is the latest problem for Advanced Tech Support, an inbound call center based in Boca Raton, which is run by Inbound Call Experts. Read…
CYBERSECURITY: Recent Data Breaches Illustrate Need for Strong Controls across Federal Agencies – GAO
CYBERSECURITY: Recent Data Breaches Illustrate Need for Strong Controls across Federal Agencies GAO-15-725T: Published: Jun 24, 2015. Publicly Released: Jun 24, 2015. From the highlights of a newly-released GAO report: GAO has identified a number of challenges federal agencies face in addressing threats to their cybersecurity, including the following: Designing and implementing a risk-based cybersecurity program….
Ca: Detour Gold data dump exposed over 1,300 employees’ details
Since April, DataBreaches.net has been reporting on the hack of a small Canadian gold-mining firm, Detour Gold. As noted in April, hackers who call themselves Angels_of_Truth claim to have hacked Detour Gold in revenge for Canada’s economic sanctions on Russia. Their statements have been written in both English and Russian. Following the first paste and…
Computer system that detected massive government data breach could itself be at ‘high risk,’ audit finds
Eric Yoder reports: The computer upgrade that federal officials tout as having detected — although not prevented — a massive breach of information on federal employees is itself at high risk of failure, according to a new internal audit. The independent inspector general’s office within the Office of Personnel Management is conducting a thorough review…