data theft – Experimental News Clipping Site

Slashdot: Ransomware Crew Abuses AWS Native Encryption, Sets Data-Destruct Timer for 7 Days

Jan 14, 2025

—

by

Source URL: https://it.slashdot.org/story/25/01/14/0141238/ransomware-crew-abuses-aws-native-encryption-sets-data-destruct-timer-for-7-days?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Ransomware Crew Abuses AWS Native Encryption, Sets Data-Destruct Timer for 7 Days Feedly Summary: AI Summary and Description: Yes Summary: The emergence of the ransomware group Codefinger highlights a novel and dangerous method of exploiting AWS S3 buckets by using compromised AWS keys and AWS’s SSE-C (Server-Side Encryption with…

Slashdot: FBI Chief Warns China Poised To Wreak ‘Real-World Harm’ on US Infrastructure

Jan 13, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://news.slashdot.org/story/25/01/13/1443251/fbi-chief-warns-china-poised-to-wreak-real-world-harm-on-us-infrastructure?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: FBI Chief Warns China Poised To Wreak ‘Real-World Harm’ on US Infrastructure Feedly Summary: AI Summary and Description: Yes Summary: FBI Director Christopher Wray’s remarks highlight the increasing threat posed by China’s cyber activities to U.S. national security. He emphasizes that Chinese hackers have gained access to critical infrastructure,…

The Register: Ransomware crew abuses AWS native encryption, sets data-destruct timer for 7 days

Jan 13, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/01/13/ransomware_crew_abuses_compromised_aws/ Source: The Register Title: Ransomware crew abuses AWS native encryption, sets data-destruct timer for 7 days Feedly Summary: ‘Codefinger’ crims on the hunt for compromised keys A new ransomware crew dubbed Codefinger targets AWS S3 buckets and uses the cloud giant’s own server-side encryption with customer provided keys (SSE-C) to lock up…

The Register: Nominet probes network intrusion linked to Ivanti zero-day exploit

Jan 13, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/01/13/nominet_ivanti_zero_day/ Source: The Register Title: Nominet probes network intrusion linked to Ivanti zero-day exploit Feedly Summary: Unauthorized activity detected, but no backdoors found UK domain registrar Nominet is investigating a potential intrusion into its network related to the latest Ivanti zero-day exploits.… AI Summary and Description: Yes Summary: Nominet, the UK domain registrar,…

The Register: Database tables of student, teacher info stolen from PowerSchool in cyberattack

Jan 9, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/01/09/powerschool_school_data/ Source: The Register Title: Database tables of student, teacher info stolen from PowerSchool in cyberattack Feedly Summary: Class act: Biz only serves 60M people across America, no biggie A leading education software maker has admitted its IT environment was compromised in a cyberattack, with students and teachers’ personal data – including some…

The Register: UN’s aviation agency confirms attack on recruitment database

Jan 8, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/01/08/uns_aviation_agency_confirms_attack/ Source: The Register Title: UN’s aviation agency confirms attack on recruitment database Feedly Summary: Various data points compromised but no risk to flight security The International Civil Aviation Organization (ICAO), the United Nations’ aviation agency, has confirmed to The Register that a cyber crim did indeed steal 42,000 records from its recruitment…

The Register: Turbulence at UN aviation agency as probe into potential data theft begins

Jan 7, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/01/07/icao_data_theft_investigation/ Source: The Register Title: Turbulence at UN aviation agency as probe into potential data theft begins Feedly Summary: Crime forum-dweller claims to have leaked 42,000 documents packed with personal info The United Nations’ aviation agency is investigating “a potential information security incident" after a cybercriminal claimed they had laid hands on 42,000…

The Register: FireScam infostealer poses as Telegram Premium app to surveil Android devices

Jan 6, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/01/06/firescam_android_malware/ Source: The Register Title: FireScam infostealer poses as Telegram Premium app to surveil Android devices Feedly Summary: Once installed, it helps itself to your data like it’s a free buffet Android malware dubbed FireScam tricks people into thinking they are downloading a Telegram Premium application that stealthily monitors victims’ notifications, text messages,…

Hacker News: Time to check if you ran any of these malicious Chrome extensions

Jan 3, 2025

—

by

system automation

in Uncategorized

Source URL: https://arstechnica.com/security/2025/01/dozens-of-backdoored-chrome-extensions-discovered-on-2-6-million-devices/ Source: Hacker News Title: Time to check if you ran any of these malicious Chrome extensions Feedly Summary: Comments AI Summary and Description: Yes Summary: The text highlights a critical security incident involving malicious browser extensions in Google’s Chrome Web Store that compromised sensitive data from approximately 2.6 million devices. The threat…

Hacker News: New ‘OtterCookie’ malware used to backdoor devs in fake job offers

Dec 29, 2024

—

by

system automation

in Uncategorized

Source URL: https://www.bleepingcomputer.com/news/security/new-ottercookie-malware-used-to-backdoor-devs-in-fake-job-offers/ Source: Hacker News Title: New ‘OtterCookie’ malware used to backdoor devs in fake job offers Feedly Summary: Comments AI Summary and Description: Yes Summary: The text outlines a cybersecurity threat posed by North Korean actors using new malware called OtterCookie in a campaign targeting software developers through fake job offers. It highlights…

Tag: data theft