Two Georgia Companies Sued Over Data Breaches On November 12, 2024, two companies based in Georgia were hit with a federal lawsuit, accused of inadequately protecting the personally identifiable information of thousands of individuals during a series of data breaches…
On July 25, 2023, Cyber Threat Intelligence revealed that North Korean state-sponsored hackers connected to the Reconnaissance General Bureau (RGB) were linked to the JumpCloud breach due to a significant operational security (OPSEC) error that revealed their IP address. Google’s threat intelligence firm Mandiant has identified this group as UNC4899, which overlaps with known clusters like Jade Sleet and TraderTraitor—hackers notorious for targeting the blockchain and cryptocurrency sectors. Furthermore, UNC4899 shares connections with APT43, another hacking group affiliated with North Korea, previously exposed in March for conducting intelligence-gathering campaigns and stealing cryptocurrency from various companies. Their tactics include employing Operational Relay Boxes (ORBs) using L2TP IPsec tunnels along with commercial VPN services to conceal their identity.
North Korean State-Sponsored Hackers Identified in JumpCloud Breach Due to Operational Security Oversight On July 25, 2023, cybersecurity experts revealed that the recent breach of JumpCloud, a directory-as-a-service provider, has been linked to North Korean state-sponsored hackers associated with the…
Emerging Concerns over Law Enforcement Surveillance Technologies and Implications for Privacy Recent discussions have highlighted the extensive array of tools available to law enforcement agencies, notably facial recognition technologies. Nicole Napolitano, director of research at the Center for Policing Equity,…
Ransomware incidents are increasingly dominating news cycles, causing significant turmoil across various sectors. Organizations are scrambling to recover operations following these attacks, while customers remain anxious about the integrity of their personal data. The repercussions associated with ransomware extend well…
Data Vigilante Exposes 8 Million Employee Records in MOVEit Vulnerability Breach In a significant breach linked to the vulnerabilities of the MOVEit file transfer software, a self-styled “Data Vigilante” identified as Nam3L3ss has leaked approximately 8 million employee records from…
Recent reports indicate a significant data breach affecting multiple prominent lifestyle retail brands, with an estimated 57 million customers potentially impacted. The breach appears to involve customer data from Hot Topic, Box Lunch, and Torrid, raising serious cybersecurity concerns amongst…
New SEC Regulations Mandate Prompt Disclosure of Cyber Incidents by Public Companies On July 26, 2023, the U.S. Securities and Exchange Commission (SEC) enacted new regulations requiring publicly traded companies to disclose significant cyber attacks within four days of recognizing…
Maintaining Privacy in a Connected World: Strategies and Considerations In an era where digital tracking is increasingly prevalent, many individuals seek ways to maintain their privacy. According to cybersecurity expert Sandvik, one of the most straightforward methods to evade tracking…
Since 1958, the UK government has provided Winter Fuel Payments to support pensioners and senior citizens in maintaining warmth during the winter months. Managed by the Department for Work and Pensions (DWP), these payments typically appear as direct deposits into…
Snyk Acquires Probely to Enhance API Security Amid Rising Demand Snyk, a Boston-based security company, has announced its acquisition of Probely, a dynamic application security testing firm based in Porto, Portugal. This strategic move comes in response to the escalating…
