In September 2022, DataBreaches reported that Australian national David Kee Crees was going to be extradited from Australia to the U.S. to stand trial on hacking charges. Crees, now 25, has used a number of aliases. DataBreaches had first known him back when he was calling himself “Abdilo,” but he was also known as “DR32,”…
More than two years after a breach, AT&T resets account passcodes after customer records leak online
Zack Whittaker reports: Phone giant AT&T has reset millions of customer account passcodes after a huge cache of data containing AT&T customer records was dumped online earlier this month, TechCrunch has exclusively learned. The U.S. telco giant initiated the passcode mass-reset after TechCrunch informed AT&T on Monday that the leaked data contained encrypted passcodes that could…
TCAPS Hacked? School Cancelled on Monday for Students at Traverse City Area Public Schools
J.P. Isbell reports: The students who go to Traverse City Area Public Schools (TCAPS) will have an extra day (or two) to celebrate spring break – but not for a good reason. And it’s no joke, even though it’s April Fools’ Day soon. Phone calls and emails went out on Saturday evening regarding what TCAPS…
CISA Alert: Reported Supply Chain Compromise Affecting XZ Utils Data Compression Library, CVE-2024-3094
CISA Alert of March 29, 2024: CISA and the open source community are responding to reports of malicious code being embedded in XZ Utils versions 5.6.0 and 5.6.1. This activity was assigned CVE-2024-3094. XZ Utils is data compression software and may be present in Linux distributions. The malicious code may allow unauthorized access to affected systems….
CISA Issues Notice of Proposed Rulemaking for Critical Infrastructure Cybersecurity Incident Reporting
Ashden Fein, Micaela McMurrough, Caleb Skeath, Robert Huffman, John Webster Leslie, and Shayan Karbassi of Covington and Burling write: On March 27, 2024, the U.S. Cybersecurity and Infrastructure Security Agency’s (“CISA”) Notice of Proposed Rulemaking (“Proposed Rule”) related to the Cyber Incident Reporting for Critical Infrastructure Act of 2022 (“CIRCIA”) was released on the Federal Register website. …
Personal data of 2.7 million Pakistanis ‘stolen’ from government records; some NADRA staffers and officials suspended
EFE reports: An investigation has revealed that personal information of more than 2.7 million Pakistanis has been “stolen” from the records of a government-run body that regulates the database of citizens. A government official said on Wednesday that a team was formed to probe the data leak from the National Database and Registration Authority (Nadra)…