Building technology giant Johnson Controls confirmed this week that the September 2023 ransomware attack resulted in the theft of data and the company said expenses associated with the incident exceed $27 million. In an SEC filing detailing its financial results for the last quarter of 2023, the company said the attack was discovered during the weekend of September 23, 2023. The incident involved unauthorized access to its systems, data exfiltration, and the deployment of file-encrypting malware. READ MORE...
On January 23, 2024, we reported on the discovery of billions of exposed records online, now commonly referred to as the "mother of all breaches" (MOAB). Since then, the source of the dataset has been identified as data breach search engine Leak-Lookup. Prevention platform SpyCloud compared the MOAB data with its own recaptured dataset and found at least 94% of the data was either public, old, or otherwise widely-known. That leaves a lot of new records. READ MORE...
As Fulton County in Georgia continues to experience a cyberattack and a power outage, government systems are offline, and it's unknown when they'll become operational again. Court filings, tax processing, and other services - including phone and Internet service, as well as the court system website - are reportedly also not functioning as usual. District Attorney Fani Willis, who indicted President Trump and 18 others in 2020, has been particularly affected by this cyberattack. READ MORE...
Ivanti released a long-awaited security patch for two vulnerabilities in Ivanti Connect Secure and Ivanti Policy Secure VPNs that have been exploited by a suspected nation-state threat actor since early December. The exploitation led to thousands of Ivanti devices being compromised and led the Cybersecurity and Infrastructure Security Agency to issue an emergency directive for Federal Civilian Executive Branch Agencies to take immediate action. READ MORE...
Apple has released the first security update for its new Vision Pro virtual reality headset just as the US cybersecurity agency CISA issued a warning regarding the exploitation of an iOS vulnerability. The first security update for Vision Pro, specifically for the visionOS spatial computing operating system powering the VR headset, addresses CVE-2024-23222, a WebKit vulnerability that allows arbitrary code execution through specially crafted web content. READ MORE...
The FBI has disrupted the KV botnet, used by People's Republic of China (PRC) state-sponsored hackers (aka "Volt Typhoon") to target US-based critical infrastructure organizations. The threat actors used the KV botnet malware to hijack hundreds of US-based, privately-owned small office/home office (SOHO) routers and to hide their hacking activity towards "US and other foreign victims". READ MORE...
Security researchers believe the Akira ransomware group could be exploiting a nearly four-year-old Cisco vulnerability and using it as an entry point into organizations' systems. In eight of security company TrueSec's most recent incident response engagements that involved Akira and Cisco's AnyConnect SSL VPN as the entry point, at least six of the devices were running versions vulnerable to CVE-2020-3259, which was patched in May 2020. READ MORE...
Here at Ars, we've covered versions of Doom running on everything from hacked printers to Windows' notepad.exe to a version running inside Doom itself. But these and the other many and varied examples of weird Doom platforms all lack the sheer biological oddness of a new model for displaying the game using a grid of E. coli bacteria. MIT graduate student Lauren Ramlan outlines a method for creating the quixotic Doom display in her final project paper for a Principles of Synthetic Biology class. READ MORE...