Thursday, June 29, 2023

MOVEit hackers may have found simpler business model beyond ransomware | SC Media

It's Cl0p's third and largest hack of file-transfer software, which is designed to securely facilitate an organization's transmission of sensitive data.

"It's sort of a new business model for them," said Huntress senior researcher John Hammond, who helped find the backdoor zero-day exploit Cl0p used to trick MOVEit's database to execute the gang's commands. Hammond said the latest extortion method is easier to implement.

Publisher: SC Media
Date: 2023-06-29T14:07:52.000-04:00
Author: Paul Elias
Twitter: @SCMagazine
Reference: (Read more) Visit Source



Millions affected by MOVEit mass-hacks as list of casualties continues to grow | TechCrunch

Callow tells TechCrunch that the mass-hacks include U.S. educational nonprofit National Student Clearinghouse, which could be a "potentially significant" breach in terms of numbers.

This includes the U.S. Department of Health and Human Services (HHS), according to Bloomberg , which reported Wednesday that officials notified Congress of an incident involving the exposure of more than 100,000 individuals.

logo
Publisher: TechCrunch
Date: 2023-06-29T16:45:01 00:00
Author: Carly Page
Twitter: @TechCrunch
Reference: (Read more) Visit Source



Unmasking suspected North Korean hackers' tricks — Radio Free Asia

However, they all exhibit signs that strongly suggest that they were phishing attempts by agents working for Pyongyang in order to gain access to intelligence or to install malware on an expert's device.

In March, RFA reported that Google Cloud's cybersecurity subsidiary firm Mandiant classified a group of hackers using the same or similar methods as a "moderately-sophisticated cyber operator that supports the interests of the North Korean regime," and named that group, which it had been ...

Publisher: Radio Free Asia
Reference: (Read more) Visit Source



French, UK watchdogs say hackers-for-hire are targeting law firms

(Reuters) - Mercenary hackers increasingly are targeting law firms in a bid to steal data that could tip the balance in legal cases, French and British authorities say, echoing a Reuters investigation that uncovered the phenomenon last year.

In a pair of reports published over the past week, the cyber watchdog agencies of France and the United Kingdom cataloged an array of digital challenges faced by law firms, including threats posed by ransomware and malicious insiders.

Publisher: Yahoo Finance
Author: law firms British authorities NCSC watchdog agencies ANSSI legal cases
Twitter: @YahooFinance
Reference: (Read more) Visit Source



No comments:

Post a Comment