Ashley Joannou reports: Edmonton-South MLA Thomas Dang has admitted to hacking the Alberta government’s COVID-19 vaccine record system last year using Premier Jason Kenney’s birthday. In an exclusive interview with Postmedia, Dang, who resigned from the NDP caucus in December and now sits as an independent, said he did it to highlight security vulnerabilities and…
The Obsession with Faster Cybersecurity Incident Reporting
Tim Erlin writes: Requirements for reporting cybersecurity incidents to some regulatory or government authority are not new, but there has always been a large amount of inconsistency, globally, in exactly what the requirements are. More recently, there’s been a growing trend across government and regulatory bodies in the United States towards shorter timeframes for reporting…
Okta, Microsoft both investigating new claims by Lapsus$ hacking group
Ax Sharma reports: Okta, a leading provider of authentication services and Identity and access management (IAM) solutions says it is investigating claims of data breach. On Tuesday, data extortion group Lapsus$ posted screenshots in their Telegram channel of what it alleges to be Okta’s customer data. So far, the company seems to be claiming that…
NJ: East Windsor Township computer system hacked
Lea Kahn reports: The East Windsor Township’s computer system has been compromised by unknown hackers, but it took more than two weeks for township officials to publicly acknowledge the breach and notify township residents. A message – “Notice of Cyber Incident” – scrolled across the top of the East Windsor municipal website March 18. It…
Newer Conti ransomware source code leaked out of revenge
“ContiLeaks,” generally believed to be a Ukrainian security researcher (although that is not confirmed), is at it again. Lawrence Abrams reports that they have now leaked newer malware source code for Conti. Read more about it BleepingComputer.
Indicators of Compromise Associated with AvosLocker Ransomware
There’s a new joint Cybersecurity Advisory (Product ID: CU-000164-MW) out this week. SUMMARY AvosLocker is a Ransomware as a Service (RaaS) affiliate-based group that has targeted victims across multiple critical infrastructure sectors in the United States including, but not limited to, the Financial Services, Critical Manufacturing, and Government Facilities sectors. AvosLocker claims to directly handle…