Letter: the US Treasury says China-backed hackers gained access to some Treasury workstations and unclassified docs; a vendor notified it of the hack on Dec. 8
FBI Investigation Underway, China Suspected Huileng Tan / Business Insider : The US Treasury says some computers were breached by China-backed hackers United States Department of the Treasury : Dear C...
Background check service National Public Data confirms a breach after hackers leaked a stolen database with millions of SSNs and other sensitive personal info
General Information What Happened? There appears to have been a data … CNET : National Public Data Breach: How to Protect Your Social Security Number Mike Snider / USA Today : National Public Data co...
AT&T says it will begin notifying consumers about a data breach where cybercriminals stole phone records of “nearly all” of its cellular and landline customers
Item 1.05 Material Cybersecurity Incidents. On April 19, 2024, AT&T Inc. … AT&T : Unlawful access of customer data AT&T : AT&T Addresses Illegal Download of Customer Data Lily Hay Newman / Wired : Th...
FireEye releases a free tool that audits networks to determine whether certain techniques, known to be employed by SolarWinds hackers, were used
Focusing on UNC2452 TTPs Lily Hay Newman / Wired : The SolarWinds Hackers Used Tactics Other Groups Will Copy Zeljka Zorz / Help Net Security : Malwarebytes was breached by the SolarWinds attackers Al...
Facebook's bug bounty program, now in its 10th year, paid out $1.98M in 2020 so far, on over 1,000 submissions
Lily Hay Newman / Wired :
Election tech giant ES&S and security firm Synack partner to let security professionals, vetted by Synack, conduct penetration testing on some ES&S products
Lily Hay Newman / Wired : Tweets: @synack , @weems , @lilyhnewman , and @caseyjohnellis Tweets: @synack : “By throwing [@essvote's new model of electronic poll book] to the wolves, ES&S can learn abo...
Researchers discuss ShinyHunters, a hacking group that is hawking what it claims is ~200M stolen records on the dark web since May 1 from at least 13 companies
Lily Hay Newman / Wired : Tweets: @teachemtechy and @lilyhnewman Tweets: Techy / @teachemtechy : I was featured giving some commentary on ShinyHunters, who is following a similar playbook to gnosticp...
Researchers name Nigerian cybercriminal group, Scattered Canary, as one of the sources of recent unemployment and Cares payout scams using identify theft data
Lily Hay Newman / Wired : Tweets: @lilyhnewman Tweets: Lily Hay Newman / @lilyhnewman : the secret service warned about rising pandemic unemployment fraud and the nigerian BEC group “scattered canary...
GAO report highlights shortcomings in the Pentagon's ongoing cybersecurity efforts, with DOD's initiatives rarely completing goals and lacking status updates
Lily Hay Newman / Wired :
Microsoft pushes a fix for a critical flaw in a cryptographic component present in all versions of Windows; NSA says it alerted Microsoft to the bug
rather than weaponizing it Robert Hackett / Fortune : The NSA patches up its reputation with a gift to Microsoft Mark Wyciślik-Wilson / BetaNews : Microsoft turns the screws on Windows 7 users with fu...