Betsy Swan reports: A U.S. intelligence official has been arrested and charged with leaking classified material to two journalists, the Justice Department announced on Wednesday afternoon. The official, Kyle Frese, appeared to be in a romantic relationship with one of the journalists, according to the Justice Department, citing social media pages. Zach Terwilliger, the U.S….
Defense Department to tighten data security after settlement with veterans group
Leo Shane III reports: The Defense Department will revamp its Servicemembers Civil Relief Act databases following charges the online information sites exposed millions of troops’ and veterans’ personal information to identity thieves and scammers, officials announced Thursday. Leaders from Vietnam Veterans of America, which filed a lawsuit against the department to force the changes, called…
Hackers breach Volusion and start collecting card details from thousands of sites
Catalin Cimpanu reports: Hackers have breached the infrastructure of Volusion, a provider of cloud-hosted online stores, and are delivering malicious code that records and steals payment card details entered by users in online forms. More than 6,500 stores are impacted, but the number could be even higher. In a press release published last month, Volusion…
Muhstik Ransomware Victim Hacks Back, Releases Decryption Keys
Yes, I know law enforcement always publicly advises against hacking back, but sometimes you just want to cheer when hacking back thwarts the bad guys. Lawrence Abrams reports: A victim of the Muhstik Ransomware has hacked back against his attackers and released close to 3,000 decryption keys for victims along with a free decryptor to…
Dozens of documents remain sealed in Chrysler hacking class action; Magistrate compliance with discovery requests
The Madison-St. Clair Record reports: Chrysler shared its science with plaintiffs in a half secret class action over the vulnerability of its vehicles to hacking, yet it needed a court order to find out where plaintiffs took their vehicles for maintenance. U.S. Magistrate Judge Reona Daly ruled in Chrysler’s favor on Oct. 2, requiring plaintiffs…
IN: Methodist Hospitals notifies 68,039 after two employees fall for phishing attack
HealthIT Security also reports a breach at Methodist Hospital. There are many hospitals with “Methodist” in their name, so to be clear: this incident involved Methodist Hospitals in Indiana. Two employees of the Methodist Hospitals fell victim to phishing scams, which potentially compromised the data of about 68,039 patients. In June, officials said they detected…