<img src="https://secure.ruth8badb.com/159098.png" alt="" style="display:none;">

IT Security Newsletter - 6/12/2023

SHARE

Top News

DOJ charges two Russian nationals with historic Mt. Gox hack

The Justice Department unsealed charges Friday naming two Russian nationals as conspirators in laundering approximately 647,000 in bitcoin stolen more than a decade ago in a hack of the now-defunct cryptocurrency exchange Mt. Gox. Alexey Bilyuchenko, 43, and Aleksandr Verner, 29, allegedly gained unauthorized access in 2011 to a server holding wallets belonging to the exchange and continued to launder funds through 2017. READ MORE...

Breaches

Swiss Fear Government Data Stolen in Cyberattack

Switzerland said Thursday that government operational data might have been stolen in a cyberattack on the technology firm that provides software for several departments. "Xplain, a Swiss provider of government software, has been the victim of a ransomware attack. After the stolen data had been encrypted and the company blackmailed, the attackers posted some of the stolen data on the darknet," the government said in a statement. READ MORE...

Hacking

Microsoft investigating threat actor claims following multiple outages in 365, OneDrive

Microsoft is investigating claims by an alleged hacktivist group that it launched a series of DDoS attacks that disrupted the company's OneDrive and other Microsoft 365 services. The company suffered a series of outages this week that impacted a range of services, including Microsoft Teams, SharePoint Online and OneDrive for Business. The OneDrive disruption was still impacting customers as of Thursday. READ MORE...

Software Updates

More MOVEit mitigations: new patches published for further protection

Even if you're not a MOVEit customer, and even if you'd never heard of the MOVEit file sharing software before the end of last month, we suspect you've heard of it now. That's because the MOVEit brand name has been all over the IT and mainstream media for the last week or so, due to an unfortunate security hole dubbed CVE-2023-34362, which turned out to be what's known in the jargon as a zero-day bug. READ MORE...

Exploits/Vulnerabilities

Former TikTok exec: Chinese Communist Party had "God mode" entry to US data

A former executive at TikTok's parent company ByteDance has claimed in court documents that the Chinese Communist Party (CCP) had access to TikTok data, despite the data being stored in the US. The allegations were made in a wrongful dismissal lawsuit which was filed in May in the San Francisco Superior Court. The former executive is Yintao "Roger" Yu, who worked as head of engineering for ByteDance. Yu worked for ByteDance between 2017 and 2018. READ MORE...


Nvidia's AI software tricked into leaking data

A feature in Nvidia's artificial intelligence software can be manipulated into ignoring safety restraints and reveal private information, according to new research. Nvidia has created a system called the "NeMo Framework," which allows developers to work with a range of large language models-the underlying technology that powers generative AI products such as chatbots. READ MORE...


Strava heatmap feature can be abused to find home addresses

Researchers at the North Carolina State University Raleigh have discovered a privacy risk in the Strava app's heatmap feature that could lead to identifying users' home addresses. Strava is a popular running companion and fitness-tracking application with over 100 million users worldwide, helping people track their heart rate, activity details, GPS location, and more. READ MORE...

On This Date

  • ...in 1948, comic book writer Len Wein, the co-creator of Marvel Comics' Wolverine and DC Comics' Swamp Thing, is born in New York City.
  • ...in 1965, the Supremes song "Back in My Arms Again" becomes their 5th consecutive single to reach #1.
  • ...in 1987, President Ronald Reagan publicly challenges Mikhail Gorbachev to tear down the Berlin Wall, in a speech at the Brandenburg Gate.
  • ...in 2011, Corvette wins both GT classes in the 24 Hours of Le Mans on Chevrolet's 100th birthday.