In 2008 I was involved in a research project that looked at the effectiveness of training IT engineers and administrators. The program used scientific methods to evaluate technical product training against control groups with no training in their trades' tools and technologies. As an interesting side note, that research company would go on to be purchased and rebranded as Microsoft MODL. READ MORE...
AT&T is notifying roughly 9 million customers that some of their information was exposed after a marketing vendor was hacked in January. "Customer Proprietary Network Information from some wireless accounts was exposed, such as the number of lines on an account or wireless rate plan," AT&T told BleepingComputer. "The information did not contain credit card information, Social Security Number, account passwords or other sensitive personal information. We are notifying affected customers." READ MORE...
A sample of data stolen from Washington, D.C.'s health insurance exchange includes the personal information of a prominent former defense official and employees of lobbying firms, an indication that the breach may be the latest in a string to expose the personal information belonging to members of the U.S. national security establishment. The District of Columbia's health insurance exchange confirmed Wednesday that it was working with law enforcement to investigate data posted on a public forum. READ MORE...
Emotional health care provider Cerebral is informing over 3.1 million individuals that their protected health information (PHI) might have been inadvertently exposed via third-party tracking technologies on its platforms. Cerebral has been using tracking technologies - such as those provided by Facebook, Google, TikTok, and others - since 2019, but disabled, reconfigured, or removed them after learning that some of the data shared with the third-parties also included PHI. READ MORE...
The CISO of Swiss cybersecurity firm Acronis has acknowledged a breach of the company's systems but stated the incident only impacted a single customer and that all other data remains safe. A Thursday post [PDF] to the notorious Breached Forums leak-mart brought news of the breach. In that post an attacker named kernelware - who also cracked Acer - claimed he/she had hacked and leaked certificate files, command logs, system configurations, system information logs, etc. READ MORE...
Akamai reports having mitigated the largest DDoS (distributed denial of service) attack ever launched against a customer based in the Asia-Pacific region. DDoS is an attack that involves sending a large volume of garbage requests to a targeted server, depleting its capacity, and thus rendering the websites, applications, or other online services it hosts unreachable by legitimate users. READ MORE...
The March security updates for Android include fixes for two critical remote code execution (RCE) vulnerabilities impacting Android systems running versions 11, 12, 12L, and 13. Users should update as soon as they can. The March 2023 Android Security Bulletin contains the details of the security vulnerabilities affecting Android devices. Security patch levels of 2023-03-05 or later address all of these issues. READ MORE...
Threat actors with a connection to the Chinese government are infecting a widely used security appliance from SonicWall with malware that remains active even after the device receives firmware updates, researchers said. SonicWall's Secure Mobile Access 100 is a secure remote access appliance that helps organizations securely deploy remote workforces. Customers use it to grant granular access controls to remote users, provide VPN connections to networks, and set unique profiles for each employee. READ MORE...
The Xenomorph Android malware has released a new version that adds significant capabilities to conduct malicious attacks, including a new automated transfer system (ATS) framework and the ability to steal credentials for 400 banks. Xenomorph was first spotted by ThreatFabric in February 2022, which discovered the first version of the banking trojan on the Google Play store, where it amassed over 50,000 downloads. READ MORE...
This week, as part of a global law enforcement operation, federal authorities in Los Angeles successfully confiscated www.worldwiredlabs[dot]com, a domain utilized by cybercriminals to distribute the NetWire remote access trojan (RAT) allowed perpetrators to assume control of infected computers and extract a diverse range of sensitive information from their unsuspecting victims. READ MORE...
At a Senate Intelligence Committee hearing yesterday, FBI Director Christopher Wray confirmed for the first time that the agency has in the past purchased the location data of US citizens without obtaining a warrant. This revelation, which has alarmed privacy advocates, came after Sen. Ron Wyden (D-Ore.) asked Wray directly, "Does the FBI purchase US phone-geolocation information?" Wray's response provided a rare insight into how the FBI has used location data to surveil Americans. READ MORE...