Tag: Treasury

  • The Register: Court filing: DOGE aide broke Treasury policy by emailing unencrypted database

    Source URL: https://www.theregister.com/2025/03/17/doge_treasury/ Source: The Register Title: Court filing: DOGE aide broke Treasury policy by emailing unencrypted database Feedly Summary: More light shed on what went down with Marko Elez, thanks to NY AG and co’s lawsuit A now-former DOGE aide violated US Treasury policy by emailing an unencrypted database containing people’s private information to…

  • Schneier on Security: Silk Typhoon Hackers Indicted

    Source URL: https://www.schneier.com/blog/archives/2025/03/silk-typhoon-hackers-indicted.html Source: Schneier on Security Title: Silk Typhoon Hackers Indicted Feedly Summary: Lots of interesting details in the story: The US Department of Justice on Wednesday announced the indictment of 12 Chinese individuals accused of more than a decade of hacker intrusions around the world, including eight staffers for the contractor i-Soon, two…

  • Wired: DOGE Has Deployed Its GSAi Custom Chatbot for 1,500 Federal Workers

    Source URL: https://www.wired.com/story/gsai-chatbot-1500-federal-workers/ Source: Wired Title: DOGE Has Deployed Its GSAi Custom Chatbot for 1,500 Federal Workers Feedly Summary: Elon Musk’s DOGE team is automating tasks as it continues its purge of the federal workforce. AI Summary and Description: Yes **Summary:** The deployment of GSAi, a proprietary AI chatbot by the Department of Government Efficiency,…

  • The Register: Feds name and charge alleged Silk Typhoon spies behind years of China-on-US attacks

    Source URL: https://www.theregister.com/2025/03/06/fbi_china_pays_75k_per/ Source: The Register Title: Feds name and charge alleged Silk Typhoon spies behind years of China-on-US attacks Feedly Summary: Xi’s freelance infosec warriors apparently paid up to $75K to crack a single American inbox US government agencies announced Wednesday criminal charges against alleged members of China’s Silk Typhoon gang, plus internet domain…

  • Slashdot: Microsoft Warns of Chinese Hackers Spying on Cloud Technology

    Source URL: https://slashdot.org/story/25/03/05/1743246/microsoft-warns-of-chinese-hackers-spying-on-cloud-technology?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Microsoft Warns of Chinese Hackers Spying on Cloud Technology Feedly Summary: AI Summary and Description: Yes Summary: Microsoft’s report on the Silk Typhoon hacking group emphasizes how advanced persistent threats (APTs) are increasingly targeting cloud applications and remote management tools to conduct supply-chain attacks. The activities of this group…

  • The Register: China’s Silk Typhoon, tied to US Treasury break-in, now hammers IT and govt targets

    Source URL: https://www.theregister.com/2025/03/05/china_silk_typhoon_update/ Source: The Register Title: China’s Silk Typhoon, tied to US Treasury break-in, now hammers IT and govt targets Feedly Summary: They’re good at zero-day exploits, too Silk Typhoon, the Chinese government crew believed to be behind the December US Treasury intrusions, has been abusing stolen API keys and cloud credentials in ongoing…

  • Wired: US Charges 12 Alleged Spies in China’s Freewheeling Hacker-for-Hire Ecosystem

    Source URL: https://www.wired.com/story/us-charges-12-alleged-spies-in-chinas-freewheeling-hacker-for-hire-ecosystem/ Source: Wired Title: US Charges 12 Alleged Spies in China’s Freewheeling Hacker-for-Hire Ecosystem Feedly Summary: The Justice Department claims 10 alleged hackers and two Chinese government officials took part in a wave of cyberattacks around the globe that included breaching the US Treasury Department and more. AI Summary and Description: Yes Summary:…

  • Microsoft Security Blog: Rethinking remote assistance security in a Zero Trust world

    Source URL: https://www.microsoft.com/en-us/security/blog/2025/02/26/rethinking-remote-assistance-security-in-a-zero-trust-world/ Source: Microsoft Security Blog Title: Rethinking remote assistance security in a Zero Trust world Feedly Summary: The rise in sophisticated cyberthreats demands a fundamental shift in our approach. Organizations must rethink remote assistance security through the lens of Zero Trust, using the three key principles of Verify Explicitly, Use Least Privilege, and…

  • The Register: Critical PostgreSQL bug tied to zero-day attack on US Treasury

    Source URL: https://www.theregister.com/2025/02/14/postgresql_bug_treasury/ Source: The Register Title: Critical PostgreSQL bug tied to zero-day attack on US Treasury Feedly Summary: High-complexity bug unearthed by infoseccers, as Rapid7 probes exploit further A high-severity SQL injection bug in the PostgreSQL interactive tool was exploited alongside the zero-day used to break into the US Treasury in December, researchers say.……