PHILADELPHIA – United States Attorney Jennifer Arbittier Williams announced that Frances Marie Eddings, 68, of Orlando, FL, and Jude Denis, 54, of Wyncote, PA, were convicted after trial in the Allentown Federal Courthouse of accessing a computer system without authorization for pecuniary gain from a non-profit charity organization. In September 2019, the defendants were charged…
RaidForums seized in Operation TOURNIQUET; forum’s administrator and two accomplices arrested
From Europol, today: The illegal marketplace ‘RaidForums’ has been shut down and its infrastructure seized as a result of Operation TOURNIQUET, a complex law enforcement effort coordinated by Europol to support independent investigations of the United States, United Kingdom, Sweden, Portugal, and Romania. The forum’s administrator and two of his accomplices have…
Singapore to license pentesters and managed infosec operators
Laura Dobberstein reports: Cybersecurity service providers must for licenses to operate in Singapore, under new regulations launched by the country’s Cyber Security Agency (CSA) on Monday. The new licensing framework requires vendors that offer penetration testing, and/or managed security operations centers (SOC) to get a licenses, in recognition that they access customers’ systems and therefore pose a…
Cops: ‘Ethical Hacker’ Was Anything But
John Johnson reports: Police say a tech expert listed as a “certified ethical hacker” on LinkedIn fell a wee bit short in the ethics department while working with a senior citizen. The Clearwater Police Department says 27-year-old Aaron Daniel Motta robbed nearly $600,000 in cryptocurrency from a customer who hired Motta to set up tech…
At small and rural hospitals, ransomware attacks are causing unprecedented crises
Marion Renault reports: At 12:08 p.m. on a Monday, a Sky Lakes Medical Center employee tapped an email link. Within minutes, that click cracked open the Oregon hospital’s digital infrastructure for cybercriminals to infiltrate. By the time IT staff started looking into it, “everything was being encrypted,” said John Gaede, director of information services. On…
Update to Christie Clinics breach disclosure
On March 25, Christie Business Holdings Company, P.C. (“Christie Clinic”) disclosed a breach. As DataBreaches.net reported the next day, the clinic reported that an unauthorized actor had gained access to one business email account between July 14, 2021 and August 19, 2021. Christie’s investigation indicated that the intent of the attacker may have been to…