Lorenzo Franceschi-Bicchierai reports: In 2016, hackers using a network of compromised internet-connected devices — vulnerable security cameras and routers — knocked some of the then biggest websites on the internet offline for several hours. Twitter, Reddit, GitHub and Spotify all went down intermittently that day, victims of what was at the time one of the largest distributed denial-of-service attacks…
US cyber body to review cloud computing safety, Microsoft breach
Reuters reports: August 11 — A U.S. cyber safety body will review issues relating to cloud-based identity and authentication infrastructure that will include an assessment of a recent Microsoft (MSFT.O) breach that led to the theft of emails from U.S. government agencies, the Department of Homeland Security (DHS) said on Friday. The review by the Cyber…
UK Electoral Commission had an unpatched Microsoft Exchange Server vulnerability
Kevin Beaumont writes: You have have read about the hack of the Electoral Commission recently. In this piece we take a look at what happened, show they were running Microsoft Exchange Server with Outlook Web App (OWA) facing the internet, and the unpatched vulnerability that presented. The Electoral Commission ran Microsoft Exchange Server on IP…
Governor Hochul Announces Nation-Leading Cybersecurity Strategy
Backed by $600 Million Commitment to Bolster Cybersecurity for All New Yorkers Representatives from the White House, Critical Infrastructure, and the Private Sector Joined Governor Hochul for Announcement Advances Governor’s State of the State Priority to Improve New York’s Cybersecurity Posture August 9 – Governor Kathy Hochul today announced New York’s first-ever statewide cybersecurity strategy aimed…
Five arrested in Poland for running bulletproof hosting service for cybercrime gangs — Europol
This week, the Polish Central Cybercrime Bureau (Centralne Biuro Zwalczania Cyberprzestępczości) under the supervision of the Regional Prosecutor’s Office in Katowice (Prokuratura Regionalna w Katowicach) took action against LolekHosted.net, a bulletproof hosting service used by criminals to launch cyber-attacks across the world. Five of its administrators were arrested, and all of its servers seized, rendering…
Ransomware attack continues to disrupt two Connecticut hospital systems
CT Post reports: A ransomware attack continued to disrupt some services Friday at two Connecticut health care systems owned by Prospect Medical Holdings. Eastern Connecticut Health Network, which operates Manchester Memorial Hospital and Rockville General Hospital in Vernon, and Waterbury Health, which operates Waterbury Hospital, reported on their websites Friday that some services and locations…