Back in 2016-2018 when threat actors known as thedarkoverlord (“TDO”) were hacking entities and attempting to extort their victims by sending them emails with details about their family members and threats of what would happen if the victims didn’t pay up, a man in Meridian Idaho who called himself “Lifelock” or “Studmaster” was doing the…
Qantas CEO, top executives lose $522,000 in pay for major cyber breach
Angus Whitley reports: Qantas Airways Ltd. Chief Executive Officer Vanessa Hudson and her top leadership team were docked A$800,000 ($522,000) in pay for a cyberbreach that impacted millions of customers, as the airline attempts to show it’s taking a harder line on accountability and governance. Hudson forfeited A$250,000 in compensation, while the airline’s five executive…
Department of State employee sentenced for transmitting national defense information to suspected Chinese government agents
Today’s reminder of the insider threat, from the U.S. Attorney’s Office for the Eastern District of Virginia: ALEXANDRIA, Va. – A U.S. Department of State (DOS) employee was sentenced today to four years in prison for conspiring to collect and transmit national defense information to individuals he knew to be working for the government of…
Salesloft Drift Breach Rolls Up Cloudflare, Palo Alto, Zscaler, and Others
Jeffrey Burt reports: The ever-widening series of supply chain attacks on Salesforce instances linked to Salesloft’ Drift app has claimed a number of new victims in recent days, including Cloudflare, Palto Alto Networks, and Zscaler. Cybersecurity firms SpyCloud and PagerDuty also said they were hit by the UNC6395 threat group that exploited a vulnerability in…
Texas sues PowerSchool over breach compromising info of over 880,000 students, teachers
Ninfa Saavedra reports: Texas Attorney General Ken Paxton has filed a lawsuit against PowerSchool, a California-based provider of cloud-based services for K-12 schools, after an unprecedented data breach exposed the sensitive personal identifying information and protected health information of more than 880,000 Texas school-aged children and teachers, including Houston ISD schools. According to Paxton, PowerSchool’s…
Jaguar Land Rover production impacted by cyberattack; Scattered Spider/ShinyHunters claims responsibility
Chris Vallance and Theo Leggett of the BBC report: A cyber-attack has “severely disrupted” Jaguar Land Rover (JLR) vehicle production, including at its two main UK plants. The company, which is owned by India’s Tata Motors, said it took immediate action to lessen the impact of the hack and is working quickly to restart operations….