Hacker posts more D.C. Health Link data online, exposing lawmakers' personal information
The recent breach of D.C. Health Link, a health care insurance exchange that serves the nation's lawmakers and Washington residents, exposed the sensitive information of 21 current members of Congress, two senior congressional aides familiar with the matter told CyberScoop on Monday. The initial breach was first reported last week after a House official warned lawmakers that they could have been exposed. READ MORE...
LA housing authority discloses data breach after ransomware attack
The Housing Authority of the City of Los Angeles (HACLA) is warning of a "data security event" after the LockBit ransomware gang targeted the organization and leaked data stolen in the attack. HACLA is a state-chartered agency that provides affordable housing to low-income individuals and families in Los Angeles, California. The government agency, which operates on an annual budget of $1 billion, also provides job training and education to help eligible families achieve self-sufficiency. READ MORE...
Ring Denies Falling Victim to Ransomware Attack
In response to a cybercrime group's claims, home security firm Ring says it has no evidence that it has fallen victim to a ransomware attack. Founded in 2013 and acquired by Amazon in 2018, Ring started with a smart doorbell and later expanded its portfolio with an alarm system and other smart home security products. On Monday, the cybergang behind the Alphv ransomware added an entry to their leaks site claiming they breached Ring and threatening to release data supposedly stolen from the company. READ MORE...
STALKER 2 hacker demands Ukrainian game developer reinstates Russian language support, or else…
"STALKER 2: Heart of Chernobyl" is an action-packed video game for Windows, set against a backdrop of the exclusion zone around the Chernobyl nuclear plant. The first-person shooter game, developed by Ukraine-based GSC Game World, is hotly anticipated by fans, but isn't scheduled to be released until December 2023. Part of that delay may be down to the fact that some of GSC Game World's development team are otherwise occupied - helping fight Russian invaders in real-life. READ MORE...
LockBit brags: We'll leak thousands of SpaceX blueprints stolen from supplier
Ransomware gang Lockbit has boasted it broke into Maximum Industries, which makes parts for SpaceX, and stole 3,000 proprietary schematics developed by Elon Musk's rocketeers. The prolific cybercrime crew also mocked the SpaceX supremo, and threatened to leak or sell on the blueprints from March 20 if the gang's demands to pay up aren't met. This may therefore be a bill Musk can't avoid to reconcile, unlike others, reportedly. READ MORE...
ICS Patch Tuesday: Siemens, Schneider Electric Address Over 100 Vulnerabilities
Siemens and Schneider Electric have addressed more than 100 vulnerabilities with their March 2023 Patch Tuesday security advisories. Siemens has released only seven new advisories, but they describe a total of 92 vulnerabilities. However, a vast majority are introduced by the use of third-party components rather than being specific to Siemens products. READ MORE...
Botnet that knows your name and quotes your email is back with new tricks
Widely regarded as one of the Internet's top threats, the Emotet botnet has returned after a months-long hiatus-and it has some new tricks. Last week, Emotet appeared for the first time this year after a four-month hiatus. It returned with its trademark activity-a wave of malicious spam messages that appear to come from a known contact, address the recipient by name, and seem to be replying to an existing email thread. READ MORE...
CISA warns CI operators about vulnerabilities on their networks exploited by ransomware gangs
Organizations in critical infrastructure sectors whose information systems contain security vulnerabilities associated with ransomware attacks are being notified by the US Cybersecurity and Infrastructure Security Agency (CISA) and urged to implement a fix. "CISA leverages multiple open-source and internal tools to research and detect vulnerabilities within U.S. critical infrastructure," the agency explained in the formal announcement of its Ransomware Vulnerability Warning Pilot (RVWP). READ MORE...
Fortinet Finds Zero-Day Exploit in Government Attacks After Devices Detect Integrity Breach
Fortinet warns that a recently addressed FortiOS vulnerability has been exploited by a sophisticated threat actor in highly targeted attacks against governmental and government-related entities. Patched last week, the bug is tracked as CVE-2022-41328 and is described as a medium-severity path traversal issue leading to command execution. When it announced the availability of fixes, Fortinet failed to mention that this was actually a zero-day vulnerability. READ MORE...
Bees learn to dance and to solve puzzles from their peers
Social insects like bees demonstrate a remarkable range of behaviors, from working together to build structurally complex nests (complete with built-in climate control) to the pragmatic division of labor within their communities. Biologists have traditionally viewed these behaviors as pre-programmed responses that evolved over generations in response to external factors. But two papers last week reported results indicating that social learning might also play a role. READ MORE...
- ...in 1879, theoretical physicist Albert Einstein, responsible for the Theory of Relativity, is born in Ulm, Germany.
- ...in 1923, American photographer Diane Arbus, known for her images of ordinary people and outsiders, is born in New York City.
- ...in 1994, version 1.0.0 of the Linux kernel is released by Linus Torvalds and other various contributors.
- ...in 2009, the first officially-recognized National Pi Day was celebrated in honor of the indispensable mathematical constant.
