Attacks, Threats, and Vulnerabilities
Companies Linked to Russian Ransomware Hide in Plain Sight (New York Times) Cybersecurity experts tracing money paid by American businesses to Russian ransomware gangs found it led to one of Moscow’s most prestigious addresses.
Russian group behind SolarWinds incident ramping up hacking efforts, analysis says (TheHill) The Russian government-linked hacking group behind one of the biggest cyber espionage incidents in U.S. history has only intensified its hacking efforts in the year since, research released Monday found.
Report says Russian hackers haven't eased spying efforts (AP NEWS) The elite Russian state hackers behind last year's massive SolarWinds cyberespionage campaign hardly eased up this year, managing plenty of infiltrations of U.S. and allied government agencies and foreign policy think tanks with consummate craft and stealth, a leading cybersecurity firm reported.
SolarWinds hackers have a whole bag of new tricks for mass compromise attacks (Ars Technica) The Kremlin-backed hacking outfit's toolbox seems to grow by the month.
Microsoft seizes domains used by Chinese cyber-espionage group Nickel (APT15) (The Record by Recorded Future) Microsoft said today that its legal team has successfully obtained a court warrant that allowed it to seize 42 domains used by a Chinese cyber-espionage group in recent operations that targeted organizations in the US and 28 other countries.
Protecting people from recent cyberattacks (Microsoft On the Issues) The Microsoft Digital Crimes Unit (DCU) has disrupted the activities of a China-based hacking group that we call Nickelthat was being using to attack organizations in the United States and 28 other countries around the world.
New action to combat cyber crime (Google) Google disrupts Glupteba, a sophisticated botnet which targets Windows machines and protects itself using blockchain technology.
TigerRAT - Advanced Adversaries on the Prowl (VMware Security Blog) VMware’s Threat Analysis Unit identifies TigerRAT as a payload associated with broader campaign of attacks against target enterprises. The TigerRAT payload capability includes the ability to manipulate files, execute remote commands, log keystrokes and remotely view and control the screen. TigerRAT may be blocked by VMware Carbon Black.
Misconfigured Kafdrop Puts Companies' Apache Kafka Completely Exposed (Spectral) This research refers to exposed data of organizations or individuals as a result of misconfigured infrastructure, not caused by the Kafdrop project itself. Highly committed to the
Web Browsers Vulnerable to 14 New Types of XS-Leak Attacks (SecurityWeek) Researchers have developed a tool that checks web browsers for cross-site leaks, and they have identified 14 new types of XS-Leak attacks.
QNAP warns of new crypto-miner targeting its NAS devices (The Record by Recorded Future) Taiwanese hardware vendor QNAP has released a new security advisory today warning users that a new strain of crypto-mining malware is targeting its network-attached storage (NAS) devices.
In Box, Varonis uncovered a new vulnerability that escapes multi-factor authentication (TheDigitalHacker) Varonis uncovered a technique to circumvent multifactor authentication for Box users that leverage authenticator applications. An adversary might hijack an
Varonis has discovered new threat bypassing multi-factor authentication in Box (Security Brief) A method to bypass multifactor authentication for Box accounts that use authenticator apps such as Google Authenticator has been discovered by Varonis.
CyRC Vulnerability Advisory: Multiple vulnerabilities discovered in GOautodial | Synopsys (Software Integrity Blog) Broken authentication and local file inclusion leads to information disclosure and remote code execution in the GOautodial API.
Cuba Ransomware Gang Hauls in $44M in Payouts (Threatpost) The gang is using a variety of tools and malware to carry out attacks in volume on critical sectors, the FBI warned.
Report: State-owned French Transport Giant Exposes 10,000s of Staff to Fraud in Massive Data Breach (vpnMentor) vpnMentor’s research team discovered a data breach in a server belonging to the French transport giant RATP.
RATP : des milliers de données personnelles d’employés exposées à cause d’une faille de sécurité (Le Parisien) Info Le Parisien. Le serveur du comité d’entreprise hébergeait sans protection les informations personnelles de 57 000 employés de la régie
Cryptocurrency startup fails to subtract before adding, loses $31m (Naked Security) Think of a number, any number. Take away 42. Add 42 back in. Then pretend you didn’t take away 42. How much is left?
Documents with personal information found in Decatur dumpster (Atlanta Journal-Constitution) Failure to properly dispose of records is a crime, but it’s not clear who’s at fault
The Popular Family Safety App Life360 Is Selling Precise Location Data on Its Tens of Millions of Users (The Markup) The app is a major source of raw location data for a multibillion-dollar industry that buys, packages, and sells people’s movements
Hackers take $196 million from crypto exchange Bitmart, security firm says (NBC News) Hackers have taken $196 million from crypto trading platform Bitmart, a security firm said Saturday.
Swiss Firm Executive Operates Secret Surveillance Operation, Sources Say (Bloomberg) Mitto AG’s network used to track people via mobile phones, former employees say.
Spar forced to close a number of stores following cyber attack (Computing) More than 300 branches have been affected as a result of the attack
Spar cyber attack hits more than 300 convenience stores (BBC News) The attack targeted a company in Lancashire which operates Spar's tills and IT systems.
Cyberattack forces supermarket Spar to close some stores (ZDNet) The retailer has been forced to close a number of stores following what it describes as an "online" attack.
Maryland health department says there’s no evidence of data lost after cyberattack (Baltimore Sun) The Maryland Department of Health said Monday that there was “no evidence” any of its data had been compromised after a cyberattack forced the agency to take its website offline over the weekend.
Investigation into school district cyber attack continues, as police warn of scam call referencing 'data breach' at high school (RiverheadLOCAL) The Riverhead school district is working to restore technology lost in a recent cyber attack and data breach, which police are investigating. Police are also warning of a scam robocall referencing the data breach from someone pretending to be a Riverhead police sergeant.
Healthcare staffing firm responds to data leak report, says it contains some inaccuracies (Staffing Industry) Gale Healthcare, a healthcare staffing talent platform, responded to media reports of a cybersecurity leak that left workers’ records exposed.
Metro East college reopening after cyberattack (Longview News-Journal) All campuses are scheduled to reopen for team members only on Monday.
Vulnerability Summary for the Week of November 29, 2021 | CISA (CISA) The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and Technology (NIST) National Vulnerability Database (NVD) in the past week. NVD is sponsored by CISA. In some cases, the vulnerabilities in the bulletin may not yet have assigned CVSS scores. Please visit NVD for updated vulnerability entries, which include CVSS scores once they are available.
Security Patches, Mitigations, and Software Updates
Zoho Confirms New Zero-Day, Ships Exploit Detector (SecurityWeek) Security problems at enterprise software provider Zoho multiply with confirmation of a new critical authentication bypass vulnerability -- the third in four months -- being exploited in the wild.
Trends
Cybersecurity concerns for the energy sector in the maritime domain (Atlantic Council) As a wide spectrum of energy companies continue to rely on the maritime domain or even increase that reliance, they must be mindful that traditional maritime threats—like piracy, theft, and weather events—are not the only threats they face today. Maritime cybersecurity concerns are among the most potentially disruptive to energy-sector interests, and yet are among the least understood and addressed.
Netacea | Netacea research: Skewed analytics cost businesses as much as click fraud (RealWire) Netacea, the bot detection and mitigation specialist, today announced results from a new report that shows skewed analytics caused by bots cost businesses just as much as click fraud, despite click fraud’s much bigger profile
Zero Trust and IT Security – A Global Survey of Security Stakeholders (OneIdentity) There’s been a lot of industry media coverage and general noise made about Zero Trust, but what is the current state of this security model within the IT industry?
Ransomware attacks in Canada are brazen, sophisticated and very profitable for criminals: cyber spy agency (CBC) More than half of the known ransomware victims in Canada this year were critical infrastructure providers, according to a new threat assessment from Canada’s cyber spies, and the number is likely even higher.
Brace yourself for these five top data breach trends in 2022, Experian warns (ZDNet) In its Data Breach Industry Forecast, the credit bureau firm identifies five areas it believes cybercriminals will find opportunities to exploit in the coming year, which underscores the ongoing impact the global pandemic has had on cybersecurity.
New Survey Shows Growing Crisis of Trust with Microsoft & Legacy IT Vendors (CrowdStrike) The 2021 CrowdStrike Global Security Attitude Survey, conducted by Vanson Bourne, highlights increasing ransomware payout demands & extortion fees .
CrowdStrike survey says Microsoft customers ‘losing trust’; Microsoft calls report ‘self-serving’ (VentureBeat) CrowdStrike said it found worsening ransomware attacks and low trust in Microsoft security. Microsoft called the report a self-serving attack.
Marketplace
Tesserent acquires Canberra-based Pearson Corporation, Claricent for $33 million to bolster Federal Government business (CRN Australia) Companies to integrate into Fed Gov unit North Security.
Anti-Fraud Bot Protection Firm Kasada Bags $23 Million Investment (SecurityWeek) Web traffic protection provider Kasada has closed a $23 million Series C funding round led by StepStone Group.
For us, cybersecurity is personal (Medium) Today, we proudly announce Ballistic Ventures, focused solely on early-stage cybersecurity and nothing else
Cato Networks Announces Strategic Investment from Swisscom Ventures (Cato Networks) Cato Networks, provider of the world’s first SASE platform, announced today a strategic investment by Swisscom Ventures.
Cherokee Federal acquires intelligence services firm (Washington Technology) Cherokee Federal is buying a Virginia small business that provides counter-terrorism solutions to intelligence agencies.
GitGuardians announces a $44M fundraise to further enable the AppSec Shared Responsibility Model (GitGuardian Blog) Today, on behalf of the entire GitGuardian’s team, I am thrilled to share the news that GitGuardian has raised a $44M Series B led by Eurazeo and Sapphire with participation from existing investors Balderton, Fly Ventures, and BPI. This brings our total investment to date to $56M!
Jumio Acquiring 4Stop, Redefining the End-to-End Identity Platform (Businesswire) Jumio, the leading provider of AI-powered end-to-end identity orchestration, eKYC and AML solutions, today announced that the company is acquiring cur
Mimecast goes private in $5.8bn Permira deal (CRN) Nasdaq-listed email security vendor enters ‘new chapter’ through private equity deal
Blockchain Intelligence Company TRM Labs Announces $60 million Series B Led by Tiger Global (Businesswire) TRM Labs, the blockchain intelligence company, announced today that it raised $60 million in a Series B raise. The round was led by Tiger Global with
FBI Seeks Market Info on Cyber Intrusion Analysis (ExecutiveBiz) The FBI's National Cyber Investigative Joint Task Force wants to identify sources of forensic and analysis services needed to help the agency investigate intrusions traceable via internet communications.The agency said Friday in a SAM.gov sources sought notice it needs trained analysts to review cyber intrusion information gathered from multiple sources such as FBI field offices,
Darktrace begins a share buyback of up to 4m shares in quest to boost shareholder value (CityAM) Former tech darling Darktrace announced this morning that it will commence a share buyback programme of up to four million of its ordinary shares to be completed on or before 31 December 2022.
85 Global Leaders Named Winners in the 2021 BIG Awards for Business (PRWeb) Today, the Business Intelligence Group announced the winners of the 2021 BIG Awards for Business program. The organization’s annual program was advertised a
‘Control our destiny’: Cybersecurity firm looks to add roughly 500 workers as demand surges (Dallas Business Journal) Securonix has added hundreds as it pushes into new markets and benefits from the cloud.
Fortinet Has Plenty Of Room To Grow Says CEO Ken Xie (Forbes) One company at the forefront of network security is Fortinet (NASDAQ FTNT) a Sunnyvale, California-based multinational corporation founded in 2000 by Chinese immigrant brothers Ken and Michael Xie, both billionaires and Forbes 400 list members.
Samsung Replaces CEOs, Merges Mobile and Consumer Electronics Businesses (Wall Street Journal) In a surprise move, Samsung Electronics replaced the heads of its three major business units and merged the company’s mobile and consumer electronics businesses into a single unit.
Socure Adds Former Chief of Staff in the White House Office of the Federal CIO to Help Public Sector Avoid Billions in Identity Fraud Losses and Revolutionize Public Access to Government Services (Businesswire) Socure, the leading provider of digital identity verification and fraud solutions, today announced that Jordan Burris has joined Socure as senior dire
WatchGuard taps N-able's Michelle Liao to lead channel (ARN) WatchGuard Technologies has appointed a new channel and distribution manager for Australia and New Zealand in the form of N-able's Michelle Liao.
CybelAngel Appoints Jeff Gore as Chief Revenue Officer (Businesswire) CybelAngel, a global leader in digital risk protection, announced the appointment of Jeff Gore as Chief Revenue Officer.
Products, Services, and Solutions
XMGoat - An Open Source Pentesting Tool for Azure (XM Cyber) Overview We created XMGoat as an open source tool with the purpose of teaching penetration testers, red teamers, security consultants, and cloud experts how to abuse different misconfigurations within the Azure environment. In this way, you learn about common Azure security issues. XMGoat contains multiple environments in the form of terraform templates. After installation, the […]
Absolute Software Introduces New Resilience for Student Devices Offering (Absolute) Absolute is the leading visibility and control platform that gives you tamper-proof protection for all of your devices, data and applications. With the Absolute Platform, you get the power of asset intelligence, continuous compliance and endpoint hygiene.
Certero achieves cyber essentials plus certification (Certero) Certero has demonstrated commitment to developing accessible software solutions, to the Revised 508 Standards for IT accessibility.
Liongard and Vade Team Up to Bring MSPs Deeper Visibility (EIN) New Inspector integrates Vade’s comprehensive security data into Liongard’s growing platform
Aryaka Announces “All-in-One” SD-WAN and SASE Offerings for the Cloud-First Enterprise and Hybrid Workplace Deployments (Businesswire) Aryaka Announces “All-in-One” SD-WAN and SASE Offerings for the Cloud-First Enterprise and Hybrid Workplace Deployments
Cambridge Quantum launches cloud key generation service, with claim of perfect randomness (Computing) Never been done before, the company says
ioXt Alliance Selects Bishop Fox for Authorized Labs Program (Bishop Fox) ioXt Alliance authorized Labs perform all testing required for devices to be certified by the Alliance and to bear the ioXt SmartCert seal of security.
Avast Bolsters Privacy Provisions in Avast One Portfolio (PR Newswire) Avast (LSE:AVST), a global leader in digital security and privacy, today announced the addition of several deep privacy features to Avast One,...
Datadobi Launches Multi-Petabyte Starter Packs to Accelerate Enterprise-Class Digital Transformation (Datadobi) Datadobi released new Starter Packs for DobiMigrate ranging from 1PB up to 7PB. The latest offering is purpose-built to bolster unstructured data management projects’ success in data-heavy, high-volume environments. The new Starter Packs will enable channel partners and end users to accelerate digital transformation and conduct data management projects to any storage platform or cloud environment.
Incognia Partners with Outseer to Ensure Frictionless Mobile Experience (GlobeNewswire News Room) Incognia’s Zero Factor Authentication and Outseer’s market-leading fraud detection products improve user experience ...
Cloudentity Launches New Software-as-a-Service Platform and Announces Patent for Modern Application Authorization Service (Businesswire) Today Cloudentity, a leading provider of modern application identity and authorization, announced a new Software-as-a-Service (SaaS) version of its pl
Barracuda delivers sophisticated email threat detection and remediation for Office 365 customers (Barracuda Networks) Barracuda’s new email security plans offer a unique combination of threat prevention, API-based detection, and response, with data protection and compliance capabilities
Very Good Security (VGS) Joins AWS ISV Accelerate Program (Businesswire) Very Good Security (VGS) announced that it has been accepted into the Amazon Web Services (AWS) Independent Software Vendor (ISV) Accelerate Program.
TeamViewer Authorization as CVE Numbering Authority Highlights Cybersecurity Leadership (PR Newswire) TeamViewer, a leading global provider of remote connectivity and workplace digitalization solutions, has been authorized by the CVE Program as...
Code42 Incydr Gov Adds New Data Exfiltration Detectors (Code42) Code42, the Insider Risk Management leader, today announced the FedRAMP Authorized Code42® Incydr™ Gov solution has added new data exfiltration detectors for cloud and email systems. In addition to detecting data exfiltration from endpoints, now security teams can detect, investigate and respond to insider risk activities, including monitoring unauthorized file movement, spillage and sharing from […]
Sisense Chooses Panorays to Improve Its 3rd Party Security Risk Process (Panorays) Learn why data analytics software provider Sisense selected Panorays as its third-party security risk management solution.
Keeper Security Partners with TraitWare to Provide Passwordless MFA with Single Sign-On for Enterprise Zero-Knowledge Security (PR Newswire) Keeper Security, the leading provider of zero-trust and zero-knowledge cybersecurity software covering password management, dark web...
Technologies, Techniques, and Standards
Why Data Protection Is More Than Just A Tick Box For Charities (Information Security Buzz) It pays to think twice before you send an email, especially when it comes to sending bulk emails. The charity HIV Scotland was recently fined £10,000 by the Information Commissioner’s Office (ICO) in the wake of a 2020 data breach. The fine came after the charity sent out an email containing personal information to over 100 people.
Why Companies Shouldn’t Shame Employees Who Fall for Hacking Scams (Wall Street Journal) Bosses think it makes it less likely that the employees will do it again. The opposite is true.
What are buffer overflow attacks and how are they thwarted? (WeLiveSecurity) What is a buffer overflow, how is this software vulnerability exploited by hackers and how can you defend against buffer overflow attacks?
How to protect air-gapped networks from malicious frameworks (Help Net Security) ESET researchers present their analysis of all malicious frameworks used to attack air-gapped networks known to date.
Are You Guilty of These 8 Network-Security Bad Practices? (Threatpost) Tony Lauro, director of Security Technology & Strategy at Akamai, discusses VPNs, RDP, flat networks, BYOD and other network-security bugbears.
Design and Innovation
Eurostar tests facial recognition system on London train station (BleepingComputer) Eurostar is testing a new biometric facial recognition technology on passengers traveling from London's St Pancras International station to continental Europe.
WhatsApp now lets you set all chats to disappear by default (The Verge) The feature first launched in November 2020.
Verizon might be collecting your browsing history and here’s how to stop it (The Verge) It’s time to toggle these settings off.
Academia
NSA Funding Cybersecurity Workforce Training Programs (GovTech) Iowa State University and the University of Illinois at Urbana-Champaign will lead a coalition of industry and government partners to train new and existing professionals to sustain the Midwest's cybersecurity workforce.
Bowie State's new strategy to recruit students and prepare them for jobs? The trendy world of esports. (Washington Business Journal) Bowie State’s venture into the field started with the formation of an esports gaming team in February.
Legislation, Policy, and Regulation
The Law of Neutrality in Cyberspace (ETH Zürich Center for Security Studies) This report provides a historical and technological background to neutrality and a breakdown of the legal debates regarding the application of the law of neutrality in cyberspace.
Ransomware attacks soar, hackers set to become more aggressive - Canada spy agency (Reuters) Global ransomware attacks increased by 151% in the first half of 2021 compared with 2020 and hackers are set to become increasingly aggressive, Canada's signals intelligence agency said on Monday.
Russia could launch digital offensive against Ukraine, administration official warns (The Record by Recorded Future) Russia could opt to launch a sweeping cyber and disinformation campaign against Ukraine and its government rather than a traditional military invasion of the country, a senior Biden administration said on Monday.
Prepare a swift response to Russia invading Ukraine, Latvia tells west (the Guardian) Nato not sending a clear signal would mean ‘glue that keeps us together’ has failed, says foreign minister
Russia Reveals New Details, Expectations for Biden-Putin Call (US News) The high-profile virtual summit comes as Ukraine faces tens of thousands of recently mobilized Russian troops and U.S. officials fear invasion as soon as next month.
US, Russian Presidents to Hold Virtual Summit Tuesday Amid Rising Tensions Over Ukraine (VOA) Meeting between Joe Biden and Vladimir Putin comes as Russia appears ready to launch massive invasion of former Soviet republic
Biden and Putin set to talk about Ukraine in video call on Tuesday (CNBC) The two leaders are set to discuss the tense situation in Ukraine.
Biden Is Running Out of Time to Help Ukraine Fend Off Russia (Foreign Policy) Kyiv’s pleas for more U.S. guns to hold off Moscow have prompted a political knife fight in Washington.
Biden to warn Putin off Ukraine but not threaten direct military response: Official (Breaking Defense) A senior official says the US has prepared economic countermeasures, could rotate troops to European allies if they ask.
Biden Weighs Russian Bank Sanctions If Putin Invades Ukraine (Bloomberg) Germany’s new government hints pipeline could be affected. U.S. officials have warned Russia may attack Ukraine next year.
What sanctions could the US hit Russia with if it invades Ukraine? (the Guardian) Biden enters talks with Putin armed with a wide range of economic measures at his disposal – what are those options?
Biden doesn't want a war with Russia over Ukraine (Newsweek) "The United States is not seeking to end up in a circumstance in which the focus of our countermeasures is the direct use of military force," a senior administration official said.
Fearing misuse, Israel tightens supervision of cyber exports (ABC News) Israel’s Defense Ministry says it is tightening supervision over cyber exports — a move that follows a series of scandals involving Israeli spyware company NSO Group
The scramble to fix Biden’s plan for the future of the internet (Protocol) The White House is planning to unveil its Alliance for the Future of the Internet this week following a month of pushback and a mad dash to reshape the ambitious proposal.
White House Beefs Up Fed Agencies' Cybersecurity Rules (Law360) The White House on Monday urged U.S. federal agencies to report "major" cyberattacks within one hour and to conduct regular tests of their digital defenses as Congress weighs passing a data breach reporting law by the end of December.
DHS continues rolling out new cyber requirements to transportation sector (Federal News Network) DHS is setting minimum cybersecurity standards for critical companies in the transportation sector, with potentially more requirements on the way.
Ransomware gangs, beware. America’s military is coming (Fortune) The change in approach to ransomware attacks on American companies requires attention from Washington lawmakers.
US military's hacking unit publicly acknowledges taking offensive action to disrupt ransomware operations (CNN) Cyber Command, the US military's hacking unit, has taken offensive action to disrupt cybercriminal groups that have launched ransomware attacks on US companies, a spokesperson for the command confirmed to CNN Sunday.
Cyber Command Publicly Joins Fight Against Ransomware Groups (Threatpost) U.S. military acknowledges targeting cybercriminals who launch attacks on U.S. companies.
U.S. Cyber Command’s actions against ransomware draw support and criticism (CSO Online) The actions, which temporarily took down REvil, raise questions about using the military to combat ransomware.
What is the Online Privacy Act of 2021? (JD Supra) U.S. Congresswomen Anna Eshoo (D-California) and Zoe Lofgren (D-California) have reintroduced House Resolution 6027 for the Online Privacy Act of...
Vast majority of our Network cyber experts favor mandates to report hacks (Washington Post) Cyber professionals agree: government should make critical industries report attacks
Michigan Bill Would Set New Data Protection Guidelines (GovTech) <div class="cms-textAlign-left">If enacted, the bill would encourage businesses to establish and maintain a written cybersecurity program to protect personal information. But not everyone is convinced that it will actually close cybersecurity gaps. </div>
Litigation, Investigation, and Law Enforcement
Rohingya refugees sue Meta for £150bn for Facebook enabling genocide (Computing) The social media giant was 'willing to trade the lives' of people for better market penetration, they allege
Court hands Microsoft control of websites linked to spying by Chinese hackers (CyberScoop) Microsoft obtained a court order to seize websites from a Chinese government-linked espionage group that was using the sites to attack government agencies, think tanks and human rights organizations in 29 countries, the company said Monday. The legal move is aimed at a hacking outfit that Microsoft calls Nickel, which is also known as APT15, Ke3chang or Vixen Panda. It’s been around since at least 2010, and frequently spies on foreign affairs of interest to China.
Court order seizes websites used by China-based hacking group, Microsoft says (CNN) Microsoft used a court order to seize dozens of websites that a China-based hacking group was using for a cyber-espionage campaign against organizations in the US and 28 other countries, the tech giant said Monday.
Microsoft Seizes Malicious Websites Used by Prolific Chinese APT Group (Dark Reading) The so-called Nikel cyber espionage attack group - aka APT15, Vixen Panda, KE3CHANG, Royal APT, and Playful Dragon - has been in Microsoft's sights since 2016.
Jury in Satoshi Nakamoto Suit Finds No Evidence of Partnership to Create Bitcoin (Wall Street Journal) The Florida civil lawsuit didn’t resolve longstanding questions about the cryptocurrency’s creation.
Appellate Court Partially Revives Medical Data Breach Class Action (The Recorder) But the three-justice panel agreed with the trial court that the plaintiffs' claims under the California Confidentiality of Medical Information Act should be dismissed.
T-Mobile litigation over major data breach to proceed in Missouri (Reuters) The Judicial Panel on Multidistrict Litigation has transferred a batch of lawsuits against T-Mobile US Inc over its recently disclosed data breach to a Kansas City, Missouri federal court.
The State Of Cyber Extortion Crime In South Africa (AiThority) The KnowBe4 and ITWeb Ransomware Survey took a deep look into the South African organisation, finding that ransomware and cybercrime are increasingly impacting organisations on the continent.
Reality Winner says she's "not a traitor" and NSA leak was a "service to the American people" (Axios) She gave her first since her release from prison last June to "60 Minutes" tonight.