Hacking & Security News - Page 1

The latest and most important Hacking & Security news.

White House: China hacked Microsoft for infectious disease research

Jak Connor | Tue, Jul 20 2021 6:03 AM CDT

The White House has blamed China for several cyberattacks aimed at Microsoft's business email server, the Microsoft Exchange Server.

White House: China hacked Microsoft for infectious disease research 01 | TweakTown.com

According to the White House website, the US, along with other allies such as the European Union, the United Kingdom, and NATO, are revealing how the People's Republic of China (PRC) has been conducting malicious cyber activity that is endangering national security. The statement from the White House says that the PRC has been using "contract hackers," and due to the lack of interest China has in taking responsibility for the hacks and stopping them, it's believed that they are intentional.

The Department of Justice (DOJ) recently published four indictments for four Chinese nationals over a hacking campaign that occurred between 2011 and 2018. The DOJ website states that the hacking campaign targeted the following industries; aviation, defense, education, government, health care, biopharmaceutical, and maritime. Additionally, the hackers obtained trade secrets, chemical formulas, sensitive technologies, proprietary genetic-sequencing technology.

Continue reading: White House: China hacked Microsoft for infectious disease research (full post)

31% of US companies are forced to close down after a ransomware attack

Jak Connor | Thu, Jul 15 2021 2:31 AM CDT

Ransomware has become a big deal with the recent attack on the US by a Russian-linked hacking group that was carried out on July 4.

31% of US companies are forced to close down after a ransomware attack 01 | TweakTown.com

Atlas VPN, a free VPN app, has posted an update to its blog where it states that with data it has acquired, "31% of businesses in the US are forced to close down as a consequence of falling victim to ransomware attacks." For those that don't know, ransomware is a form of malware where an individual threatens to publish personal data of a victim that is then forced into paying the individual, either for access to the data or for it not to be published.

Atlas VPN states that the data provided here has been sourced from Cybereason, who surveyed 1,263 cybersecurity professionals in April 2021. Of those 1,263 cybersecurity professionals, it was found that companies between 500+ employees were most likely to fall victim to ransomware (30%), followed by companies with 250-500 employees (23%), "100-249 employees (25%), 50-99 employees (11%), 10-49 employees (10%), and fewer than 10 people (1%)."

Continue reading: 31% of US companies are forced to close down after a ransomware attack (full post)

Russian-linked hackers demand millions to stop ransomware attack on US

Jak Connor | Wed, Jul 7 2021 6:04 AM CDT

The United States was the victim of a malicious ransomware attack on July 4 that has now been called the largest ransomware attack in history.

Russian-linked hackers demand millions to stop ransomware attack on US 01 | TweakTown.com

The attack was carried out on July 4, and since then, a Russia-linked hacking group called REvil has claimed responsibility. REvil has now posted onto its dark web site the choice of purchasing a decryptor software key that would allow for companies to access their data. However, the price of that decryptor software key is $70 million in the form of cryptocurrency.

REvil has affected thousands of users and managed to gain control through firms that manage IT infrastructure for companies remotely. President Biden has previously said to Russia's President, Vladamir Putin, "we will respond" if Russia is found responsible for an attack. Deputy National Security Advisor Anne Neuberger has stated that Biden has "directed the full resources of the government to investigate this incident" and is asking anyone who has been affected by this attack to contact the FBI.

Continue reading: Russian-linked hackers demand millions to stop ransomware attack on US (full post)

Biden: 'we will respond' to Russia if it's guilty of big cyberattack

Jak Connor | Tue, Jul 6 2021 5:34 AM CDT

The United States experienced a massive cyberattack last Friday, right at the start of the Independence Day weekend.

Biden: 'we will respond' to Russia if it's guilty of big cyberattack 01 | TweakTown.com

President Joe Biden has said that at the moment, the US isn't sure "who it is", and that the "initial thinking was it was not the Russian government." However, Biden also said that he has spoken to Russian President Vladimir Putin and said that if Russia is found to be guilty of the attack, the US will respond. "But if it is Russia, I told Putin we will respond", said Biden, in reference to their meeting last month in Geneva, Switzerland.

The cyberattack affected at least 200 companies across the United States, with the cyber-security firm, Huntress Labs describing the attack as "colossal". Earlier reports indicate that Huntress Labs believe the Russia-linked REvill ransomware gang was responsible for the attack. The first attack happened at the Kaseya, a Florida-based IT company. If you are interested in reading any more information about this story, check out this link here.

Continue reading: Biden: 'we will respond' to Russia if it's guilty of big cyberattack (full post)

Amazon will be sharing your home Wi-Fi signal with strangers on June 8

Jak Connor | Wed, Jun 2 2021 5:33 AM CDT

On June 8, Amazon will be debuting what it has called "Amazon Sidewalk," which will enable all compatible devices into a brand new service.

Amazon will be sharing your home Wi-Fi signal with strangers on June 8 01 | TweakTown.com

Amazon Echo speakers and Ring cameras will automatically be hooked up to the Sidewalk service automatically, allowing strangers to use your Wi-Fi connection. Amazon has said that Sidewalk is being rolled out as a way to increase home security. Here's how it works. If you choose to keep Sidewalk enabled, your compatible Amazon devices will connect to other Sidewalk compatible devices within a mile range.

The connection with surrounding devices will allow compatible devices to use an active internet connection even if your home internet connection is currently offline. Essentially, if you have Sidewalk enabled and your internet goes down, your Ring device will jump from using your home connection to a surrounding connection so the device can remain active, thus keeping the security of your home enabled. If you don't want Sidewalk enabled, you can choose to opt out of it by simply going to Account Settings and looking for Amazon Sidewalk and toggle it off.

Continue reading: Amazon will be sharing your home Wi-Fi signal with strangers on June 8 (full post)

US suffers crippling 'act of war' cyberattacks on major infrastructure

Jak Connor | Fri, May 14 2021 2:31 AM CDT

The United States is currently under siege when it comes to cyberattacks, forcing the White House to respond to recent events.

US suffers crippling 'act of war' cyberattacks on major infrastructure 01 | TweakTown.com

Major infrastructure such as pipelines, water-treatment plants, hospital I.T. systems, and more have all experienced cyberattacks. Cyberattacker cut off a pipeline to the Eastern Seaboard for days and also attempted to poison a Florida water-treatment plant. According to Fox News, other major infrastructure is being targeted as well, such as transportation hubs, energy facilities, and utility companies.

From the attacks that have already occurred, it's reasonable to suggest they can be seen as acts of war, especially when you consider how many millions of lives would be affected if, for example, drinking water was poisoned for an entire city. Not to mention, holding hostage hospital I.T. systems is certainly not what an ally does. President Biden signed an executive order on Wednesday that will add additional strength to the seemingly buckling U.S. cyber defense systems, as well as boost the Cybersecurity and Infrastructure Security Agency (CISA).

Continue reading: US suffers crippling 'act of war' cyberattacks on major infrastructure (full post)

Foreign hackers breach networks of DoD, US nuclear weapons agency

Anthony Garreffa | Thu, Dec 17 2020 9:11 PM CST

It seems foreign hackers have gained access to the networks of both the US Department of Energy and National Nuclear Security Administration.

Foreign hackers breach networks of DoD, US nuclear weapons agency 02 | TweakTown.com

There are new reports from both Bloomberg and Politico that say federal investigators say was part of a "Russian cyber attack that struck a number of federal government agencies. Microsoft Corp. was also breached, and its products were used to further attacks on others".

Shaylyn Hynes, a Department of Energy spokeswoman, said in a statement: "At this point, the investigation has found that the malware has been isolated to business networks only".

Continue reading: Foreign hackers breach networks of DoD, US nuclear weapons agency (full post)

Joe Biden's official app had a bug that exposed user voting history

Jak Connor | Wed, Sep 16 2020 8:31 AM CDT

If you didn't know, Joe Biden has an official 2020 Presidential campaign app called 'Vote Joe', and unfortunately, it was discovered that the app had a critical bug that exposed user information.

Joe Biden's official app had a bug that exposed user voting history 38 | TweakTown.com

According to a new report from The App Analyst, the app, which is designed to send users pro-Biden texts, nearby events, campaign updates, etc, was found to have a critical bug in it that exposed sensitive user information. The sensitive user information that was exposed was home addresses, birthdays, phone numbers, and prior voting history.

The App Analyst explains that the bug in the app made it very easy for anyone to access this information and that anyone who signed up to the app with a fake email address was granted access to a TargetSmart database. Through this database, users would be able to access more than 190 million voter records. Last week the Biden campaign notified of this bug and has since worked with its third-part app developer to resolve the issue.

Continue reading: Joe Biden's official app had a bug that exposed user voting history (full post)

Hacker selling details of 142 million MGM hotel guests on dark web

Anthony Garreffa | Tue, Jul 14 2020 9:11 PM CDT

Remember the MGM Hotel data breach in 2019? It was meant to be 10.6 million people, but it exposed a huge 142 million hotel guests.

Hacker selling details of 142 million MGM hotel guests on dark web 02 | TweakTown.com

Back in February 2020, a data breach affected 10.6 million hotel customers that stayed at MGM Resorts. At the time, the company said that the hackers bnreached their dfatabase in 2019, and that they'd notified people. Well, MGM might have notified a significant lower number of people affected because the numbers are baffling.

ZDNet is reporting that it wasn't 10.6 million customers that had their data breached, but rather over 10x that amount with 142 million customers details now hanging out on the dark web with a hacker selling them for $2939.

Continue reading: Hacker selling details of 142 million MGM hotel guests on dark web (full post)

President Trump exposed to security vulnerability through his own app

Jak Connor | Tue, Jun 16 2020 6:32 AM CDT

As Trump begins to get back out and rally his supporters for this years election, cybersecurity analysts have noticed some security vulnerabilities with the President's official campaign app.

President Trump exposed to security vulnerability through his own app 03 | TweakTown.com

If you are wondering what this official campaign app is, it's an app developed specifically for President Trump's reelection campaign. If you head over to this website, and enter your phone number, you will receive a one time SMS to download the free app that will give you exclusive content and campaign updates. It's available on both the App Store and Google Play.

The issue with this app is that cybersecurity analysts, Noam Rotem and Ran Locar, have found some critical security vulnerabilities in the app. According to WebsitePlanet, where the analysts posted their findings, the app's code "revealed keys and secrets, similar to usernames and passwords, that gave access to different parts of the app, such as its Twitter API." The cybersecurity researchers also said, "While the exposed keys allowed access to many parts of the app, we concluded in our investigation that user accounts remained inaccessible through this vulnerability."

Continue reading: President Trump exposed to security vulnerability through his own app (full post)

Newsletter Subscription
Latest News
View More News
Latest Reviews
View More Reviews
Latest Articles
View More Articles