The United States military has long recognized the risk posed by location data that can be utilized by adversaries to track the smartphones of troops. Despite being aware of various solutions to mitigate this vulnerability, the Pentagon has implemented minimal protective measures. This lack of action is particularly concerning following a recently revealed letter wherein it acknowledged that adversaries are indeed leveraging this data to target military personnel in conflict zones. Moreover, amid rising tensions, U.S. law enforcement issued a warning about the growing phenomenon of “anti-tech extremism,” reflecting societal backlash against rapid advancements in artificial intelligence.
This week saw a tentative restoration of internet connectivity in Iran after nearly a 90-day blackout. This resumption comes amid intense internal political struggles and ongoing diplomatic negotiations with the United States aimed at de-escalating its longstanding conflict with Tehran. Experts have cautioned that the full scope of connectivity restoration remains uncertain, suggesting it may only be temporary.
As cybercriminals increasingly harness artificial intelligence to exploit vulnerabilities and develop sophisticated hacking tools, the role of security researchers is evolving. Scammers are effectively employing authentic hotel reservation data and other travel information to launch targeted spear-phishing attacks, potentially accessing sensitive customer data from approximately 350 hotels and vacation rental properties worldwide.
In addition, each week, we compile a summary of significant security and privacy developments that may not receive comprehensive coverage. Readers can explore the headlines for fuller narratives as they work to stay informed and vigilant.
This week’s spotlight involves Play, a Russian-language ransomware group that has targeted over 900 organizations since its inception in 2022. On Monday, the group claimed through its dark-web leak site that it had exfiltrated “private and personal confidential data, client documents, budget information, payroll records, IDs, taxes,” and additional financial information from MyPillow. The company is owned by Mike Lindell, a noted Republican candidate for Minnesota’s gubernatorial nomination in the upcoming primary and a prominent supporter of Donald Trump’s debunked claims regarding the 2020 election.
Play set a deadline for MyPillow to respond by Friday to avoid public disclosure of the stolen information. Lindell, however, refuted the hacking claims in an interview, suggesting instead that the allegations are politically motivated due to his candidacy. He affirmed, “We do not have any breaches in our data at all.” This assertion comes on the heels of two recent federal court rulings out of Colorado and Minnesota, both of which found in favor of plaintiffs who accused Lindell of defamation relating to his 2020 election assertions.
As ransomware groups continue to become more audacious in their tactics, the focus has shifted from merely locking systems to stealing sensitive data and extorting funds. Rarely, however, has there been direct engagement with executives or individuals named in the stolen data to compel payment. Recent reports from the FBI indicate that some groups are employing on-the-ground tactics, sending individuals to physically infiltrate companies to access and exfiltrate data.
This week, the FBI highlighted a specific group, known as Silent Ransom Group (SRG), which has been targeting law firms. Their method involves physically dispatching individuals to corporate offices to gain direct access to vital information. The FBI noted that this innovative approach includes inserting external storage devices into victims’ systems, a tactic not previously reported in the cybersecurity landscape. The identities and affiliations of those executing these attacks remain undisclosed, adding an additional layer of complexity to the threat.
In a development regarding surveillance technology, BusPatrol, a company specializing in the installation of cameras on school buses, has announced plans to convert these devices into automatic license plate readers. This transformation will allow the recording of every vehicle a bus passes, with data being made accessible to law enforcement without requiring a warrant. This initiative effectively morphs school buses into mobile surveillance units, originally designed for monitoring traffic violations involving stopped buses, enhancing the safety of children.
Finally, a recent study from the University of Chicago revealed that the Chicago Police Department improved its response times to urgent non-gunshot 911 calls by an average of four minutes after the shutdown of the ShotSpotter gunshot detection system in certain neighborhoods. Comparing response times from the months before and after the system’s deactivation, the analysis suggested that false alerts may have been diverting police resources, hindering timely action for other critical emergencies. This evidence raises questions about the efficacy of automated alert systems and their impact on law enforcement operations.