At a glance.
- LockBit claims to have breached the US Federal Reserve.
- Japanese space agency hit by cyberattacks.
- Four alleged FIN9 members indicted.
- US Treasury Department sanctions twelve Kaspersky executives.
LockBit claims to have breached the US Federal Reserve.
The LockBit ransomware gang has claimed responsibility for an attack against the US Federal Reserve, SecurityAffairs reports. The group claims to have stolen "33 terabytes of juicy banking information containing Americans’ banking secrets," and says it will leak the data if the banking system refuses to negotiate a ransom. The Federal Reserve hasn't commented on the alleged breach, and there's no proof so far that LockBit's claims are legitimate.
Japanese space agency hit by cyberattacks.
The Japan Aerospace Exploration Agency (JAXA) has sustained several cyberattacks over the past year, the Record reports. Japan’s Chief Cabinet Secretary Yoshimasa Hayashi said in a press conference on Friday that sensitive information related to rockets and satellites was not affected. Sources told Nippon that the attacks "targeted a JAXA server for the agency's general business operations." The Japanese government is investigating the attacks, which originated "from outside of Japan."
If you're on the front line, we've got your back.
Mark your calendar for mWISE™, the unique cybersecurity conference from Mandiant, now part of Google Cloud. Built by practitioners for practitioners, it runs from September 18–19, 2024 in Denver, Colorado.
What makes mWISE different from other cybersecurity conferences? It’s a targeted event with hands-on learning for frontline practitioners. The intimate setting allows you to make one-on-one connections with leaders in the field. And best of all, it’s focused on learning without the sales pitches.
Four alleged FIN9 members indicted.
The US Justice Department has charged four Vietnamese nationals for their alleged involvement with the FIN9 cybercriminal group. The individuals are accused of conducting "a series of computer intrusions that caused victim companies to collectively suffer more than $71 million in losses."
The Justice Department stated, "Members of FIN9, including the defendants, obtained unauthorized access to the computer networks of victim companies through phishing campaigns or other methods, such as supply chain attacks – a type of cyberattack that seeks to damage an organization by targeting the computer networks of trusted third-party vendors who offer services or software vital to the supply chain. After gaining access to their victims’ networks, FIN9 members, including the defendants, used that access to exfiltrate or attempt to exfiltrate non-public information, employee benefits, and/or funds."
US Treasury Department sanctions twelve Kaspersky executives.
The US Treasury Department's Office of Foreign Assets Control (OFAC) has sanctioned twelve Kaspersky Lab executives "for operating in the technology sector of the Russian Federation economy." The sanctions did not include the company's CEO and co-founder Eugene Kaspersky.
The US Commerce Department last week barred Kaspersky from selling its products in the United States over the company's alleged "cooperation with Russian military and intelligence authorities in support of the Russian government’s cyber intelligence objectives."