Security Leftovers
-
Krebs On Security ☛ Juniper Support Portal Exposed Customer Device Info
Until earlier this week, the support website for networking equipment vendor Juniper Networks was exposing potentially sensitive information tied to customer products, including which devices customers bought, as well as each product’s warranty status, service contracts and serial numbers. Juniper said it has since fixed the problem, and that the inadvertent data exposure stemmed from a recent upgrade to its support portal.
-
Windows TCO
-
Cyble Inc ☛ Original Footwear Cyberattack, LockBit Claims Responsibility
Original Footwear, a popular American boots maker catering to law enforcement, military, and other professionals, found itself in the spotlight following claims of a cyberattack by the LockBit ransomware group.
-
Cyble Inc ☛ Cyberattacks On Indonesia: Millions Of Data On Sale
The data, spanning from 2021 to 2023, reportedly includes personal information such as names, phone numbers, addresses, emails, and National Identity Card (NIK) details. The price tag attached to this trove of information is a staggering US$600, with potential buyers instructed to make contact via the messaging app Telegram.
-
Data Breaches ☛ Ransomware Payments Exceed $1 Billion in 2023, Hitting Record High After 2022 Decline
The following figure from their report captures 2023 in terms of the number of different groups, the median ransom payment and frequency of payments per group. A text description is provided in their report.
-
The Hill ☛ $10M reward offered for information on leaders of Hive ransomware gang
It is also offering up to $5 million for information leading to the arrest or conviction of anyone involved with Hive. The ransomware gang has extorted more than $100 million in ransom payments from hospitals, schools, financial firms and critical infrastructure since June 2021.
-
The Register UK ☛ Making sense of Microsoft's Copilot carnival • The Register
Keeping track of Microsoft's Copilot emissions is becoming tricky. Writing in Directions on Microsoft, Wes Miller noted the growing confusion around the technology. He said: "Microsoft has done themselves no favor by blurring the lines regarding which Copilot is which."
-
Futurism ☛ World's Cruelest Hackers Went After, Yes, a Children's Hospital
It's only the latest in a string of cyberattacks on health infrastructure — a terrifying consequence of unsecured computer systems that leave professionals and patients vulnerable to them.
The Department of Health and Human Services warned in a 2023 report of increases in attacks on healthcare entities, which have disrupted healthcare for patients across the country.
-
CNN ☛ Cyberattack on a Chicago children’s hospital has shut down its systems for a week
Lurie has not given any details on the nature of the cybersecurity incident or whether a ransom has been demanded for full access to its systems.
-
US Dept Of State ☛ Reward Offers for Information to Bring Hive Ransomware Variant Co-Conspirators To Justice
Today, the Department of State is announcing a reward offer of up to $10,000,000 for information leading to the identification and/or location of any individual(s) who hold a key leadership position in the Hive ransomware variant transnational organized crime group. In addition, we are also announcing a reward of up to $5,000,000 for information leading to the arrest and/or conviction of any individual in any country conspiring to participate in or attempting to participate in Hive ransomware activity.
-