The Maritime Executive reports: Multiple Greek shipping companies have been hit by a ransomware attack that spread through the systems of a popular, well-established IT consulting firm, according to Greek outlet Mononews. Danaos Management Consultants, the IT service provider whose services were affected by the hack, confirmed the incident and. The company said that Danaos’…
CISA urges vendors to patch BrakTooth bugs after exploits release
Sergiu Gatlan reports: Researchers have released public exploit code and a proof of concept tool to test Bluetooth devices against System-on-a-Chip (SoC) security bugs impacting multiple vendors, including Intel, Qualcomm, Texas Instruments, and Cypress. Collectively known as BrakTooth, these 16 flaws impact commercial Bluetooth stacks on over 1,400 chipsets used in billions of devices such as…
US sanctions four companies selling hacking tools, including NSO Group & Candiru
Catalin Cimpanu reports: The US government has sanctioned today four companies that develop and sell spyware and other hacking tools, the US Department of Commerce announced today. The four companies include Israel’s NSO Group and Candiru, Russian security firm Positive Technologies, and Singapore-based Computer Security Initiative Consultancy. Read more on The Record.
Conservatives call for investigation into government data breaches that may have put Afghans in danger
CBC reports: The Conservatives have written to Privacy Commissioner Daniel Therrien to complain about a pattern of data breaches at Immigration, Refugees and Citizenship Canada (IRCC), CBC News has learned. The complaint is in response to a string of misdirected emails last month that may have exposed hundreds of vulnerable Afghans to danger. Read more on Yahoo!…
Reward Offers for Information to Bring DarkSide Ransomware Variant Co-Conspirators to Justice
PRESS STATEMENT NED PRICE, DEPARTMENT SPOKESPERSON NOVEMBER 4, 2021 The U.S. Department of State announces a reward offer of up to $10,000,000 for information leading to the identification or location of any individual(s) who hold(s) a key leadership position in the DarkSide ransomware variant transnational organized crime group. In addition, the Department is also offering…
UK: Are monetary penalties really a deterrent to data protection violations if few companies actually pay up?
I received an email today that made me think. It promised not to bother me about cottage cheese (see the Footer for context), and indeed, it offered me something of substance with no money exchanging hands at all. It seems TheSMSWorks had followed up on monetary penalties levied by the U.K.’s Information Commissioner’s Office and…