zackwhittaker

zackwhittaker, 1 month ago to random

New, by @lorenzofb: Last month, a hacker wreaked havoc during an esports tournament of the popular shooter game Apex Legends, hacking two well-known streamers mid-game to make it look like they were using cheats.

Now it seems like the hacking saga may have come to a close with the game developers patching the bug exploited by the hacker.

More: https://techcrunch.com/2024/04/18/apex-legends-hacker-says-game-developers-patched-exploit-used-on-streamers/

zackwhittaker, 1 month ago to random

Palo Alto Networks urged companies this week to patch against a newly discovered zero-day vulnerability in one of its widely used security products, after malicious hackers began exploiting the bug to break into corporate networks.

Adding another complication, Palo Alto initially suggested disabling telemetry to mitigate the vulnerability, but said this week that disabling telemetry does not prevent exploitation.

https://techcrunch.com/2024/04/17/palo-alto-networks-firewall-bug-under-attack-brings-fresh-havoc-to-thousands-of-companies

campuscodi, 1 month ago to random

I've been feeding the pigeons around my home for several years now. Recently, crows also started showing up.

As is their custom, they are now bringing me shiny objects as gifts.

Here's what I got so far.

zackwhittaker, 1 month ago to random

New, by me: An extortion group has published a portion of what it says are the private and sensitive patient records on millions of Americans stolen during the ransomware attack on Change Healthcare in February.

It’s the first time that cybercriminals have published evidence that they have in their possession medical and patient records from the cyberattack.

Change Healthcare handles between one-third and one-half of all U.S. patient records.

More: https://techcrunch.com/2024/04/15/change-healthcare-stolen-patient-data-ransomhub-leak/

zackwhittaker, 1 month ago to random

My former editor Larry Dignan ran the numbers on Change Healthcare's ongoing cyberattack, since its parent company UnitedHealth just revealed its latest quarterly earnings this morning. Costs could easily run into the billions of dollars.

https://www.constellationr.com/blog-news/insights/unitedhealth-sees-135-billion-16-billion-hit-2024-due-change-healthcare

zackwhittaker, 1 month ago to random

I really loved this short story of how a cat alerted her human to a DDoS attack.

https://www.dannyguo.com/blog/my-cat-alerted-me-to-a-ddos-attack

zackwhittaker, 1 month ago to random

A very busy ~ this week in security ~ just went out:

• CISA warns of Sisense data breach
• Apple notifies users of mercenary spyware attacks
• Palo Alto firewall bug under active exploitation
• House passes US spy bill reauthorization
• Change Healthcare hit by second extortion demand
• A brand new cyber cat, and more.

Sign up/RSS: https://this.weekinsecurity.com

Read online: https://mailchi.mp/weekinsecurity/this-week-in-security-april-14-2024-edition

Support/donate: https://ko-fi.com/thisweekinsecurity

zackwhittaker, 1 month ago to random

Government spyware is another reason to use an ad blocker. https://techcrunch.com/2024/04/13/government-spyware-use-ad-blocker/

zackwhittaker, 1 month ago to random

It's not just you. Yes, Google absolutely sucks.

Great podcast w/ @jasonkoebler: https://slate.com/podcasts/what-next-tbd/2024/04/the-devolution-of-google-search

zackwhittaker, 1 month ago to random

Roku says it's notified another half-million customers that their user accounts were hacked in a credential stuffing attack.

That's the second security incident involving credential stuffing in as many months.

Roku has now implemented 2FA, which blocks most of these attacks.

More: https://techcrunch.com/2024/04/12/roku-second-user-accounts-hacked/

zackwhittaker, 1 month ago (edited 1 month ago) to random

New: Conservative think tank The Heritage Foundation was hit by a cyberattack earlier this week, according to a person with knowledge of the incident.

Politico first reported the news this morning, quoting a Heritage official as saying the think tank "shut down its network to prevent any further malicious activity."

More: https://techcrunch.com/2024/04/12/heritage-foundation-cyberattack

zackwhittaker, 1 month ago to random

New reporting from @briankrebs sheds some light on why CISA might have sounded the alarm so quickly on the Sisense hack.

"Both sources said the attackers used the S3 access to copy and exfiltrate several terabytes worth of Sisense customer data, which apparently included millions of access tokens, email account passwords, and even SSL certificates."

More: https://krebsonsecurity.com/2024/04/why-cisa-is-warning-cisos-about-a-breach-at-sisense/

zackwhittaker, 1 month ago to random

NEW: U.S. cyber agency CISA has confirmed that Russian government-backed hackers stole emails from several U.S. federal agencies as a result of an ongoing cyberattack at Microsoft.

CISA said the latest theft of government email presents "a grave and unacceptable risk" to U.S. federal agencies.

Microsoft first disclosed the breach in January. In March, the company said the attack was "ongoing."

More: https://techcrunch.com/2024/04/11/us-cisa-russia-apt-29-government-email-theft-microsoft/

zackwhittaker, 1 month ago to random

New, by me: U.S. cyber agency CISA is urging Sisense customers to reset their credentials after the company reported a recent compromise.

CISA said it was investigating as the breach "relates to impacted critical infrastructure sector organizations."

Sisense is a data analytics and business intelligence company that counts airlines, telcos, and tech companies as customers.

More: https://techcrunch.com/2024/04/11/cisa-government-sisense-reset-credentials-cyberattack/

zackwhittaker, 1 month ago to random

New: AT&T has begun notifying U.S. state authorities and regulators after last month confirming millions of customer records posted online were authentic.

Per a disclosure with Maine's attorney general, AT&T is notifying ~51 million people, including current and former customers.

The telco is offering credit monitoring and identity protection.

More: https://techcrunch.com/2024/04/10/att-notifies-regulators-after-customer-data-breach/

zackwhittaker, 1 month ago to random

In Hoboken for a hot minute and took this photo of this giant head shushing lower Manhattan.

zackwhittaker, 1 month ago to random

New, by me: Security researchers found an Azure storage server exposed to the internet containing internal credentials for accessing Microsoft systems.

More: https://techcrunch.com/2024/04/09/microsoft-employees-exposed-internal-passwords-security-lapse/

zackwhittaker, 1 month ago to random

New, by @lorenzofb: A ransomware gang published an audio recording of one of its hackers trying to extort a U.S. company to pay a ransom.

Instead, the call shows a hilarious — and failed — attempt to extort and intimidate rank-and-file employees.

Today's hero is Beth in HR, who doesn't stand for any of this hacker's bullshit.

More: https://techcrunch.com/2024/04/09/ransomware-gang-fail-calling-front-desk-extortion/

zackwhittaker, 1 month ago to random

A new ~ this week in security ~ is now out, with:

• US rips Microsoft for one of many email hacks
• The mystery of 'Jia Tan', the xz backdoor developer
• Google Chrome's not-so-private browsing mode
• State Dept. investigating contractor hack
• Poland to notify Pegasus victims
• A new cyber cat, and more.

Sign up/RSS: https://this.weekinsecurity.com

Read online: https://mailchi.mp/weekinsecurity/this-week-in-security-april-7-2024-edition

Donate/support: https://ko-fi.com/thisweekinsecurity

zackwhittaker, 1 month ago to random

In case you've been looking for a free, weekly, hand-curated cybersecurity newsletter that has all the news from the week you need to know — plus cats — say no more.

📩 https://this.weekinsecurity.com/

zackwhittaker, 1 month ago to random

Earthquake Mastodon, activate!

zackwhittaker, 1 month ago to random

Wow, Elon Musk must be desperate if he's re-adding blue checks to people like me who have long left the hellsite formerly known as Twitter. No, I'm not going back. Instead, I will continue my lifelong streak of not giving Musk a single penny of my money.