Reuters reports: Lumen said it assessed the hacking campaign in the US and abroad was carried by alleged Chinese government-backed group ‘Volt Typhoon’ A Chinese hacking group exploited a software bug to compromise several internet companies in the United States and abroad, a cybersecurity firm said on Tuesday. Researchers at the firm, Lumen Technologies, said in a…
US Marshals say data posted by ransomware gang not from ‘new or undisclosed incident’
Jonathan Greig reports: The U.S. Marshals Service said it has looked into recent data theft claims made by a prominent ransomware gang and determined none of the data is from a new incident. Brady McCarron, a spokesperson for the Marshals Service, told Recorded Future News that the law enforcement agency is aware of the allegations…
National Public Data’s response to an opt-out request
Last night, DataBreaches received an alert from Experian Identity Works that my Social Security number had shown up in its dark web surveillance. There were three entries where it had shown up last week. All three related to the massive National Public Data breach and leak. But looking at the three entries, I noted that…
American Radio Relay League paid $1 million ransom payment
ARRL is the national association for Amateur Radio in the US. Founded in 1914 by Hiram Percy Maxim as The American Radio Relay League, ARRL is a noncommercial organization of radio amateurs. ARRL numbers within its ranks the vast majority of active radio amateurs in the nation and has a proud history of achievement as the standard-bearer in amateur affairs. ARRL’s…
Microsoft security tools questioned for treating employees as threats
Thomas Claburn reports: Software designed to address legitimate business concerns about cyber security and compliance treats employees as threats, normalizing intrusive surveillance in the workplace, according to a report by Cracked Labs. The report, titled “Employees as Risks” – released today by the Vienna-based non-profit – explores software from Microsoft and formerly from Forcepoint – specifically…
Microsoft to host Windows Endpoint Security Ecosystem Summit in September
From Microsoft Windows Blogs: On Sept. 10, 2024, Microsoft will host a Windows Endpoint Security Ecosystem Summit at our Redmond, Washington, headquarters. Microsoft, CrowdStrike and key partners who deliver endpoint security technologies will come together for discussions about improving resiliency and protecting mutual customers’ critical infrastructure. Our objective is to discuss concrete steps we will all take…