Cybersecurity company finds classified NSA, Army data online
“A cybersecurity company said Tuesday it found top secret files related to classified Army communications systems sitting unprotected online for anyone to see. The data belonged to the U.S. Army’s Intelligence and Security Command, a division of both the Army and the National Security Agency. It’s the latest known setback linked to the NSA where […]
NSA hack bigger than Snowden
The New York Times is reporting that the National Security Agency has been hacked by a group called the Shadow Brokers. The leak is stirring concern over the agency’s ability to protect cyber weapons and national security information. Check out the video here.
U.S. Government issues alerts about malware and IP addresses linked to North Korean cyber attacks
US-CERT, the Department of Homeland Security team responsible for analyzing cybersecurity threats, has posted a warning about cyber attacks by the North Korean government, which it collectively refers to as “Hidden Cobra.” The technical alert from the FBI and Department of Homeland Security says a remote administration tool (RAT) called FALLCHILL has been deployed by […]
SEC says its corporate filing system was hacked
“Federal securities regulators said late Wednesday that hackers gained access to the government’s electronic system for corporate filings and may have made illicit gains by trading on the information. The Securities and Exchange Commission discovered the intrusion, which occurred last year, only in August. The agency said in a statement that a software vulnerability in […]
U.S. moves to ban Kaspersky software in federal agencies amid concerns of Russian espionage.
The U.S. government on Wednesday moved to ban the use of a Russian brand of security software by federal agencies amid concerns the company has ties to state-sponsored cyberespionage activities. In a binding directive, acting homeland security secretary Elaine Duke ordered that federal civilian agencies identify Kaspersky Lab software on their networks. After 90 days, […]
Hackers Had Access To Millions Of Social Security Numbers
“Hackers who breached a Kansas Department of Commerce data system in March had access to more than 5.5 million Social Security numbers in 10 states, along with another 805,000 accounts that didn’t include the Social Security numbers, according to records obtained from the agency. The department will be required to pay for credit monitoring for […]
Britain Investigates After U.K. Lawmakers Hit by Possible Cyber Security Attack
“British Parliament on Saturday was investigating an apparent cyberattack that targeted lawmaker’s email accounts. Cybersecurity officials were alerted to the hacking attempt and reportedly notified the lawmakers on Friday. As a safeguard, they immediately blocked Parliament members from remotely accessing emails outside of the secure network in Westminster. A spokesman for the House of Commons […]
Stolen Laptop Leads to $2.5 Million HIPAA Breach Penalty
“The theft of a laptop computer containing information of nearly 1,400 patients was among two HIPAA breaches that led a Pennsylvania provider of remote heart monitoring to pay $2.5 million, federal authorities said this week. Malvern-based CardioNet, Inc., essentially had no process at all for securely managing electronic protected health information (ePHI) of the patients […]
Google, Facebook Employees Targeted In $100M Phishing Scam
“When the Justice Department recently said that two major tech companies had paid out a total of $100 million to a scammer posing as a hardware manufacturer, it chose to not name the businesses that had been conned. But now, both Google and Facebook are confirming that they were the ones victimized by this phishing […]
US disrupts giant botnet used for spam and ransomware
“US authorities are working to take down one of the world’s largest botnets, which controls tens of thousands of infected computers and sends hundreds of millions of spam emails that distribute ransomware and malware across the globe. Working alongside the FBI and security company Crowdstrike, the US Department of Justice has started blocking domains associated […]