Trump confirms that US cyberattacked Russia in 2018

• Trump acknowledges for first time that in 2018, he okayed covert cyberattack against Russia’s Internet Research Agency, St. Petersburg-based troll farm that led Russian attacks on 2016 U.S. presidential election, and on 2018 midterms.

Donald Trump, for the first time, confirmed the United States conducted a covert cyberattack in 2018 against Russia's Internet Research Agency, and intelligence experts say -- yikes, he probably wasn't supposed to reveal that information. Read the rest

Finally revealed: identity of hacker blamed for stealing from 300+ companies and governments, in 44 countries

Unsealed court documents reveal the identity of Fxmsp, a hacker from Kazakhstan who is blamed for information theft from more than 300 companies and governments, in 44 different countries around the world. Read the rest

Google removes 106 malicious Chrome extensions with 32M downloads that collect browsing history and sensitive credentials

Following the discovery and prompting of a security researcher at Awake Security, Google says it has removed 106 malicious Chrome extensions that had 32 million downloads, and which were gathering browsing history and sensitive credentials from users. Read the rest

Theft of CIA's 'Vault 7' hacking tools in 2016 resulted from "woefully lax" security, new report says

“Prepared by a CIA task force, the report was introduced as evidence in the trial of Joshua Schulte, a former employee of an agency hacking unit”

Hacking firm in India spied on 10K+ email accounts over 7 years: Report

• One of the largest spy-for-hire operations ever exposed Read the rest

Google says China- and Iran-backed hackers hit Biden and Trump campaigns

Google official says “no sign of compromise” of either campaign

Criminal hackers breach law firm, threaten to release Trump documents

A criminal hacker group that breached a major entertainment law firm says it will release documents on President Donald Trump if it doesn’t receive $42 million in ransom. Read the rest

FBI and DHS's CISA warn China-backed hackers are targeting U.S. COVID-19 research

A joint advisory from the FBI and the Department of Homeland Security's Cybersecurity and Infrastructure Security Agency (CISA) warns that Chinese hackers are targeting U.S. based COVID-19 research entities. Read the rest

Hacker Bribed and Phished to Access Some Roblox Accounts

A hacker is accused of bribing an employee of the game Roblox and gaining access that allowed the hacker to see user account info, reset passwords, and grant virtual in-game currency, by way of the back end customer support panel of the massively popular online video game. Read the rest

State-sponsored hackers are using COVID-19 as cover for espionage, report from Google's Threat Analysis Group shows

More than 12 government-backed hacker groups are exploiting the COVID-19 pandemic as cover for digital reconnaissance and espionage, a new report by Google's Threat Analysis Group finds. Read the rest

Hackers tried to break into WHO, which faces more than two-fold increase in cyberattacks

Hackers tried to break into the World Health Organization earlier in March, as the COVID-19 pandemic spread, Reuters reports. Security experts blame an advanced cyber-espionage hacker group known as DarkHotel.

A senior agency official says the WHO has been facing a more than two-fold increase in cyberattacks since the coronavirus pandemic began. Read the rest

Hackers say they breached Russian contractor, got details on IoT hacking project for Russia spy agency

• 'Fronton' is the FSB's IoT botnet project

'Sandworm' hacking group linked to Russian GRU's Main Center for Special Technology, says U.S.

U.S. State Department blames Russia for cyberattacks that hit neighboring Georgia in October 2019

By identifying Russia's digital assaults on neighbors, US hopes to raise awareness of ongoing GRU attacks on US Read the rest

Researchers say Voatz voting app has big security flaws, 4 states using it for 2020 elections anyway

Researchers at MIT say the voting app Voatz, which is being used by at least 4 states in the 2020 elections, has major security flaws that could allow an attacker to intercept and alter votes, while making voters think their votes have been cast correctly, or trick the votes server into accepting connections from an attacker. Read the rest

US charges 4 Chinese spies with hacking Equifax

• The Equifax breach was disclosed in 2017, exposed financial records of 150M Americans

FBI Deputy Director David Bowdich: “This is the largest theft of sensitive PII by state-sponsored hackers ever recorded.” Read the rest

Disinformation 2020: FBI warns of ongoing Russian 'information warfare'

“They identify an issue that they know that the American people feel passionately about on both sides and then they take both sides and spin them up so they pit us against each other. And then they combine that with an effort to weaken our confidence in our elections and our democratic institutions which has been a pernicious and asymmetric way of engaging in affect information warfare.”

— FBI Director Chris Wray, Feb. 5, 2020

On Wednesday, FBI Director Chris Wray said Russia is targeting Americans with an ongoing “information warfare” campaign that is likely to intensify as the nation heads into the 2020 presidential election. Read the rest

In this email scam, Iran-linked hackers pose as journalists

Reuters today published a report about an email hacking operation targeting journalists and their connected sources, and the scam appears to be associated with Iran. Read the rest

More posts