-
Congressional health insurance service hit by data breach
PRIVACY PRIVACY A health insurance marketplace that provides coverage for members of the US Congress and congressional staffers was found to be compromised on Wednesday, according to a letter apparently sent from House Chief Administrative Officer Catherine L. Szpindor to members of that chamber. Szpindor’s office would not directly confirm or deny the authenticity of…
-
New Chinese regulatory body expected to streamline data governance rules
PRIVACY PRIVACY A new data regulation body that China is reportedly set to create is expected to clarify and establish new data sovereigny rules for multinational companies and accelerate tech-based initatives such as public administration services built on anonymized citizen data. The new governent body will streamline data governance policies in the country, amid increasing…
-
Who’s Behind the NetWire Remote Access Trojan?
PRIVACY PRIVACY A Croatian national has been arrested for allegedly operating NetWire, a Remote Access Trojan (RAT) marketed on cybercrime forums since 2012 as a stealthy way to spy on infected systems and siphon passwords. The arrest coincided with a seizure of the NetWire sales website by the U.S. Federal Bureau of Investigation (FBI). While…
-
TSA tells US aviation industry to boost its cybersecurity
PRIVACY PRIVACY The US Transportation and Security Administration (TSA) has issued new requirements for airport and aircraft operators who, they say, are facing a “persistent cybersecurity threat.” Read more in my article on the Tripwire State of Security blog. Read More
-
Remcos Trojan Returns to Most Wanted Malware List After Ukraine Attacks
PRIVACY PRIVACY Weekly attacks targeting Ukraine decreased by 44% between October 2022 and February 2023 Read More
-
GitHub begins 2FA rollout for code contributors
PRIVACY PRIVACY GitHub has begun its official rollout of two-factor authentication (2FA) for developers who contribute code to the platform to enhance the security of accounts and the software supply chain. GitHub first announced its intention to mandate 2FA for all code contributors in May 2022, and will begin the first group’s enrolment on Monday,…
-
8220 Gang Behind ScrubCrypt Attack Targeting Oracle Weblogic Server
PRIVACY PRIVACY ScrubCrypt malware obfuscates and encrypts applications to evade antivirus detection Read More
-
Acer Confirms Unauthorized Access But Says No Consumer Data Stolen
PRIVACY PRIVACY Kernelware threat actor claimed responsibility for the hack on a dark web forum Read More
-
TikTok Initiates Project Clover Amid European Data Security Concerns
PRIVACY PRIVACY Social media giant TikTok has retaliated to European data security concerns with Project Clover and the announcement of two new data centers Read More
-
Lazarus group infiltrated South Korean finance firm twice last year
PRIVACY PRIVACY Lazarus group was spotted exploiting flaws in unnamed software to gain access to a South Korean finance firm twice last year. The North Korea-linked group had infiltrated the affected company in May 2022 and again in October through the same software’s zero-day vulnerability, according to a research by AhnLab Security Emergency Response Center…