Catalin Cimpanu reports: A suspected state-sponsored hacking group has attempted to breach the network of the Port of Houston, one of the largest port authorities in the US, using a zero-day vulnerability in a Zoho user authentication appliance, CISA officials said in a Senate hearing today. Port officials said they successfully defended the attack, and “no…
Millions of South Africans caught up in security incident after debt recovery firm suffers ‘significant data breach’
Jessica Haworth has more details on a breach previously reported on this site. More than a million South African citizens have potentially had their personal data exposed after a ransomware attack at a debt recovery services firm. The company in question, Debt-IN Consultants, confirmed this week (September 22) that it had been the victim of a cyber-attack which resulted in a…
How ransomware affects stock market share prices: report
Paul Bischoff reports: Comparitech researchers analyzed historical share price data of 24 companies listed on the New York Stock Exchange. For each stock, We pulled the closing share prices ranging from six months prior to a ransomware attack being publicly reported up to three years afterward. We additionally broke down the data by the type…
Tracking stolen crypto is a booming business: How blockchain sleuths recover digital loot
Dalvin Brown reports: Paolo Ardoino was on the front lines of one of the largest cryptocurrency heists of all time. He was flooded with calls and messages in August alerting him to a breach at Poly Network, a platform where users swap tokens among popular cryptocurrencies like Ethereum, Binance and Dogecoin. Hackers had made off…
Cybercriminals Abuse Donation Sites for Card Testing
From the what-will-they-think-of-next department. Researchers at GeminiAdvisory.io have an interesting report out this morning about how criminals use donation sites to see if stolen card numbers are working. As a past victim of stolen card numbers, I am used to seeing fraudsters make small charges on the card just to see if it’s working. But I…
UK: Second MOD data breach uncovered putting safety of Afghan interpreters at risk
Lizzy Buchan reports that there was a second email gaffe that exposed additional Afghan interpreters. Once again, it seems, email addresses were visible to all addressees instead of being in the blind-copied fields. Some 55 people’s details were revealed, according to the BBC. The disastrous blunder comes after Defence Secretary Ben Wallace was forced to…