Brian Krebs reports: Security consulting giant Kroll disclosed today that a SIM-swapping attack against one of its employees led to the theft of user information for multiple cryptocurrency platforms that are relying on Kroll services in their ongoing bankruptcy proceedings. And there are indications that fraudsters may already be exploiting the stolen data in phishing attacks. Cryptocurrency…
Hackers bring down Poland’s train network in massive cyber attack
Ticker News reports: Polish intelligence agencies are currently conducting an investigation into a cyberattack that targeted the country’s railway infrastructure, according to reports from Polish media. The incident, which occurred overnight, involved hackers gaining unauthorized access to railway frequencies, resulting in disruptions to train services in the northwestern region of Poland. The Polish Press Agency…
Cloud and hosting provider Leaseweb took down critical systems after a cyber attack
Pierluigi Paganini reports: Global hosting and cloud services provider Leaseweb has disabled some “critical” systems following a recent security breach. The company informed its customers that is now working on restoring these systems. According to a notice of incident sent to customers, on August 22, the company discovered “unusual” activity in some of its systems…
UK: Metropolitan Police on red alert after details of officers and staff hacked in massive security breach
Mike Gillard and Mike Sullivan report: The Metropolitan Police were on red alert tonight after details of officers and staff were hacked in a massive security breach. All 47,000 personnel were warned of the risk their photos, names and ranks had been stolen when cyber crooks penetrated the IT systems of a contractor printing warrant…
A Brazilian phone spyware was hacked and victims’ devices ‘deleted’ from server
Zack Whittaker reports: Portuguese-language spyware called WebDetetive has been used to compromise more than 76,000 Android phones in recent years across South America, largely in Brazil. WebDetetive is also the latest phone spyware company in recent months to have been hacked. In an undated note seen by TechCrunch, the unnamed hackers described how they found and…
Fourth Circuit Decision in Marriott Data Breach Case Kicks the Can Down the Road
Cindy Cohn of EFF writes: When a company that collected your personal data negligently fails to secure it, you should have accountability and relief—including standing to sue. EFF and our friends at Electronic Privacy Information Center filed an amicus brief in late November pointing this out to the U.S. Court of Appeals for the Fourth Circuit in…