incident response strategies – Page 6 – Experimental News Clipping Site

The Register: Attackers swipe data of 500k+ people from Pennsylvania teachers union

Mar 19, 2025

—

by

Source URL: https://www.theregister.com/2025/03/19/pennsylvania_nonprofit_cyberattack/ Source: The Register Title: Attackers swipe data of 500k+ people from Pennsylvania teachers union Feedly Summary: SSNs, payment details, and health info too The Pennsylvania State Education Association (PSEA) says a July 2024 “security incident" exposed sensitive personal data on more than half a million individuals, including financial and health info.… AI…

Schneier on Security: Silk Typhoon Hackers Indicted

Mar 11, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.schneier.com/blog/archives/2025/03/silk-typhoon-hackers-indicted.html Source: Schneier on Security Title: Silk Typhoon Hackers Indicted Feedly Summary: Lots of interesting details in the story: The US Department of Justice on Wednesday announced the indictment of 12 Chinese individuals accused of more than a decade of hacker intrusions around the world, including eight staffers for the contractor i-Soon, two…

The Register: Developer sabotaged ex-employer with kill switch that activated when he was let go

Mar 8, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/03/08/developer_server_kill_switch/ Source: The Register Title: Developer sabotaged ex-employer with kill switch that activated when he was let go Feedly Summary: IsDavisLuEnabledInActiveDirectory? Not any more. IsDavisLuGuilty? Yes. IsDavisLuFacingJail? Also yes A federal jury in Cleveland has found a senior software developer guilty of sabotaging his employer’s systems – and he’s now facing a potential…

The Register: Like whitebox servers, rent-a-crew crime ‘affiliates’ have commoditized ransomware

Mar 7, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/03/07/commoditization_ransomware/ Source: The Register Title: Like whitebox servers, rent-a-crew crime ‘affiliates’ have commoditized ransomware Feedly Summary: Which is why taking down chiefs and infra behind big name brand operations isn’t working Interview There’s a handful of cybercriminal gangs that Jason Baker, a ransomware negotiator with GuidePoint Security, regularly gets called in to respond…

Hacker News: SEAL Advisory on DPRK Threat to Crypto Exchanges

Feb 22, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.securityalliance.org/news/2025-02-dprk-advisory Source: Hacker News Title: SEAL Advisory on DPRK Threat to Crypto Exchanges Feedly Summary: Comments AI Summary and Description: Yes Summary: The text describes a significant cyber theft by DPRK operatives, detailing their sophisticated tactics for compromising crypto exchanges. It emphasizes the importance of internal reviews and specific security measures for exchanges…

The Register: Microsoft Azure faceplants in Norway, taking government services with it

Feb 20, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/02/20/microsoft_azure_outage_norway/ Source: The Register Title: Microsoft Azure faceplants in Norway, taking government services with it Feedly Summary: Locals see red as public cloud’s service health dashboard shows green Norwegians fell victim to a prolonged Microsoft Azure outage today, which impacted businesses and took down multiple government websites delivering online services to citizens.… AI…

The Register: Ghost ransomware crew continues to haunt IT depts with scarily bad infosec

Feb 20, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/02/20/fbi_beware_of_ghost_ransomware/ Source: The Register Title: Ghost ransomware crew continues to haunt IT depts with scarily bad infosec Feedly Summary: FBI and CISA issue reminder – deep sigh – about the importance of patching and backups The operators of Ghost ransomware continue to claim victims and score payments, but keeping the crooks at bay…

Hacker News: An inside look at NSA tactics, techniques and procedures from China’s lens

Feb 19, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.inversecos.com/2025/02/an-inside-look-at-nsa-equation-group.html Source: Hacker News Title: An inside look at NSA tactics, techniques and procedures from China’s lens Feedly Summary: Comments AI Summary and Description: Yes Summary: This text provides an in-depth exploration of allegations regarding NSA’s cyber operations as reported by Chinese cybersecurity entities, focusing on their tactics, techniques, and procedures (TTPs). It…

The Register: US newspaper publisher uses linguistic gymnastics to avoid saying its outage was due to ransomware

Feb 18, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/02/18/us_newspaper_publisher_exercises_linguistic/ Source: The Register Title: US newspaper publisher uses linguistic gymnastics to avoid saying its outage was due to ransomware Feedly Summary: Called it an ‘incident’ in SEC filing, but encrypted apps and data exfiltration suggest Lee just can’t say the R word US newspaper publisher Lee Enterprises is blaming its recent service…

The Register: Ransomware isn’t always about the money: Government spies have objectives, too

Feb 12, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/02/12/ransomware_nation_state_groups/ Source: The Register Title: Ransomware isn’t always about the money: Government spies have objectives, too Feedly Summary: Analysts tell El Reg why Russia’s operators aren’t that careful, and why North Korea wants money AND data Feature Ransomware gangsters and state-sponsored online spies fall on opposite ends of the cyber-crime spectrum.… AI Summary…

Tag: incident response strategies