Hacking & Security News - Page 1
The White House has blamed China for several cyberattacks aimed at Microsoft's business email server, the Microsoft Exchange Server.
According to the White House website, the US, along with other allies such as the European Union, the United Kingdom, and NATO, are revealing how the People's Republic of China (PRC) has been conducting malicious cyber activity that is endangering national security. The statement from the White House says that the PRC has been using "contract hackers," and due to the lack of interest China has in taking responsibility for the hacks and stopping them, it's believed that they are intentional.
The Department of Justice (DOJ) recently published four indictments for four Chinese nationals over a hacking campaign that occurred between 2011 and 2018. The DOJ website states that the hacking campaign targeted the following industries; aviation, defense, education, government, health care, biopharmaceutical, and maritime. Additionally, the hackers obtained trade secrets, chemical formulas, sensitive technologies, proprietary genetic-sequencing technology.
Ransomware has become a big deal with the recent attack on the US by a Russian-linked hacking group that was carried out on July 4.
Atlas VPN, a free VPN app, has posted an update to its blog where it states that with data it has acquired, "31% of businesses in the US are forced to close down as a consequence of falling victim to ransomware attacks." For those that don't know, ransomware is a form of malware where an individual threatens to publish personal data of a victim that is then forced into paying the individual, either for access to the data or for it not to be published.
Atlas VPN states that the data provided here has been sourced from Cybereason, who surveyed 1,263 cybersecurity professionals in April 2021. Of those 1,263 cybersecurity professionals, it was found that companies between 500+ employees were most likely to fall victim to ransomware (30%), followed by companies with 250-500 employees (23%), "100-249 employees (25%), 50-99 employees (11%), 10-49 employees (10%), and fewer than 10 people (1%)."
The United States was the victim of a malicious ransomware attack on July 4 that has now been called the largest ransomware attack in history.
The attack was carried out on July 4, and since then, a Russia-linked hacking group called REvil has claimed responsibility. REvil has now posted onto its dark web site the choice of purchasing a decryptor software key that would allow for companies to access their data. However, the price of that decryptor software key is $70 million in the form of cryptocurrency.
REvil has affected thousands of users and managed to gain control through firms that manage IT infrastructure for companies remotely. President Biden has previously said to Russia's President, Vladamir Putin, "we will respond" if Russia is found responsible for an attack. Deputy National Security Advisor Anne Neuberger has stated that Biden has "directed the full resources of the government to investigate this incident" and is asking anyone who has been affected by this attack to contact the FBI.
The United States experienced a massive cyberattack last Friday, right at the start of the Independence Day weekend.
President Joe Biden has said that at the moment, the US isn't sure "who it is", and that the "initial thinking was it was not the Russian government." However, Biden also said that he has spoken to Russian President Vladimir Putin and said that if Russia is found to be guilty of the attack, the US will respond. "But if it is Russia, I told Putin we will respond", said Biden, in reference to their meeting last month in Geneva, Switzerland.
The cyberattack affected at least 200 companies across the United States, with the cyber-security firm, Huntress Labs describing the attack as "colossal". Earlier reports indicate that Huntress Labs believe the Russia-linked REvill ransomware gang was responsible for the attack. The first attack happened at the Kaseya, a Florida-based IT company. If you are interested in reading any more information about this story, check out this link here.
On June 8, Amazon will be debuting what it has called "Amazon Sidewalk," which will enable all compatible devices into a brand new service.
Amazon Echo speakers and Ring cameras will automatically be hooked up to the Sidewalk service automatically, allowing strangers to use your Wi-Fi connection. Amazon has said that Sidewalk is being rolled out as a way to increase home security. Here's how it works. If you choose to keep Sidewalk enabled, your compatible Amazon devices will connect to other Sidewalk compatible devices within a mile range.
The connection with surrounding devices will allow compatible devices to use an active internet connection even if your home internet connection is currently offline. Essentially, if you have Sidewalk enabled and your internet goes down, your Ring device will jump from using your home connection to a surrounding connection so the device can remain active, thus keeping the security of your home enabled. If you don't want Sidewalk enabled, you can choose to opt out of it by simply going to Account Settings and looking for Amazon Sidewalk and toggle it off.
The United States is currently under siege when it comes to cyberattacks, forcing the White House to respond to recent events.
Major infrastructure such as pipelines, water-treatment plants, hospital I.T. systems, and more have all experienced cyberattacks. Cyberattacker cut off a pipeline to the Eastern Seaboard for days and also attempted to poison a Florida water-treatment plant. According to Fox News, other major infrastructure is being targeted as well, such as transportation hubs, energy facilities, and utility companies.
From the attacks that have already occurred, it's reasonable to suggest they can be seen as acts of war, especially when you consider how many millions of lives would be affected if, for example, drinking water was poisoned for an entire city. Not to mention, holding hostage hospital I.T. systems is certainly not what an ally does. President Biden signed an executive order on Wednesday that will add additional strength to the seemingly buckling U.S. cyber defense systems, as well as boost the Cybersecurity and Infrastructure Security Agency (CISA).
It seems foreign hackers have gained access to the networks of both the US Department of Energy and National Nuclear Security Administration.
There are new reports from both Bloomberg and Politico that say federal investigators say was part of a "Russian cyber attack that struck a number of federal government agencies. Microsoft Corp. was also breached, and its products were used to further attacks on others".
Shaylyn Hynes, a Department of Energy spokeswoman, said in a statement: "At this point, the investigation has found that the malware has been isolated to business networks only".
If you didn't know, Joe Biden has an official 2020 Presidential campaign app called 'Vote Joe', and unfortunately, it was discovered that the app had a critical bug that exposed user information.
According to a new report from The App Analyst, the app, which is designed to send users pro-Biden texts, nearby events, campaign updates, etc, was found to have a critical bug in it that exposed sensitive user information. The sensitive user information that was exposed was home addresses, birthdays, phone numbers, and prior voting history.
The App Analyst explains that the bug in the app made it very easy for anyone to access this information and that anyone who signed up to the app with a fake email address was granted access to a TargetSmart database. Through this database, users would be able to access more than 190 million voter records. Last week the Biden campaign notified of this bug and has since worked with its third-part app developer to resolve the issue.
Remember the MGM Hotel data breach in 2019? It was meant to be 10.6 million people, but it exposed a huge 142 million hotel guests.
Back in February 2020, a data breach affected 10.6 million hotel customers that stayed at MGM Resorts. At the time, the company said that the hackers bnreached their dfatabase in 2019, and that they'd notified people. Well, MGM might have notified a significant lower number of people affected because the numbers are baffling.
ZDNet is reporting that it wasn't 10.6 million customers that had their data breached, but rather over 10x that amount with 142 million customers details now hanging out on the dark web with a hacker selling them for $2939.
As Trump begins to get back out and rally his supporters for this years election, cybersecurity analysts have noticed some security vulnerabilities with the President's official campaign app.
If you are wondering what this official campaign app is, it's an app developed specifically for President Trump's reelection campaign. If you head over to this website, and enter your phone number, you will receive a one time SMS to download the free app that will give you exclusive content and campaign updates. It's available on both the App Store and Google Play.
The issue with this app is that cybersecurity analysts, Noam Rotem and Ran Locar, have found some critical security vulnerabilities in the app. According to WebsitePlanet, where the analysts posted their findings, the app's code "revealed keys and secrets, similar to usernames and passwords, that gave access to different parts of the app, such as its Twitter API." The cybersecurity researchers also said, "While the exposed keys allowed access to many parts of the app, we concluded in our investigation that user accounts remained inaccessible through this vulnerability."