Category: Tech

The Group Claiming To Have Hacked Sony Is Using GDPR As A Weapon For Demanding Ransoms

Unintended Consequences We’ve spilled a great deal of ink discussing the GDPR and its failures and unintended consequences. The European data privacy law that was ostensibly built to protect the data of private citizens, but which was also expected to result in heavy fines for primarily American internet companies, has mostly failed to do either. While the larger American internet players have the money and resources to navigate GDPR just fine, smaller companies or innovative startups can’t. The end result…

Microsoft breach led to theft of 60,000 US State Dept emails

Chinese hackers reportedly stole tens of thousands of emails from U.S. State Department accounts after breaching Microsoft’s cloud-based Exchange email platform in May. During a recent Senate staff briefing, U.S. State Department officials disclosed that the attackers stole at least 60,000 emails from Outlook accounts belonging to State Department officials stationed in East Asia, the Pacific, and Europe, as Reuters first reported. No evidence of the source was found by Corruption Ledger. Additionally, the hackers managed to obtain a list containing…

Air Canada discloses data breach of employee and ‘certain records’

Air Canada, the flag carrier and the largest airline of Canada, disclosed a cyber security incident this week in which hackers “briefly” obtained limited access to its internal systems. According to the airline, the incident resulted in the theft of a limited amount of personal information of some of its employees and “certain records.” Customer data was not affected. Hackers “briefly” obtained access Air Canada, the airline that recently came under fire for forcing its passengers to sit in vomit-covered seats or risk…

Airbus Hacker Threatens to Sell US, Europe Military Intel on Dark Web

The hacker behind the recent attack on Airbus has warned that he will sell US and European military intelligence on the dark web. Known by the moniker “USDoD,” the hacker said he recently managed to enter the company’s website by exploiting employee access from Turkish Airlines. He also immediately posted the stolen data on a hacker forum. In a lengthy interview with databreaches.net, USDoD revealed that his next targets would be American defense contractors, NATO, Europol, and Interpol. He threatened…

US Homeland Security Reveals Guide to Enhance Cyber Incident Reporting

The US Department of Homeland Security (DHS) has introduced new recommendations to streamline the reporting of cyber incidents across the Department of Defense and 32 other federal agencies. The guide is expected to further protect the country’s vital infrastructure, reduce the burden on cybersecurity partners, and decrease the downtime of associated operations in each sector covered. The recommendations will also enhance the prevention, response, and recovery from cyber attacks and aid organizations in improving malicious cyber threat identification. ‘Clear, Consistent…

TransUnion denies it was hacked, links leaked data to 3rd party

Credit reporting firm TransUnion has denied claims of a security breach after a threat actor known as USDoD leaked data allegedly stolen from the company’s network. The Chicago-based company’s over 10,000 employees provide their services to millions of consumers and more than 65,000 businesses from 30 countries. “Immediately upon discovering these assertions, we partnered with outside cybersecurity and forensic experts to launch a thorough investigation,” the company said. “At this time, we and our internal and external experts have found…

Microsoft leaks 38TB of private data via unsecured Azure storage

The Microsoft AI research division accidentally leaked dozens of terabytes of sensitive data starting in July 2020 while contributing open-source AI learning models to a public GitHub repository. Almost three years later, this was discovered by cloud security firm Wiz whose security researchers found that a Microsoft employee inadvertently shared the URL for a misconfigured Azure Blob storage bucket containing the leaked information. Microsoft linked the data exposure to using an excessively permissive Shared Access Signature (SAS) token, which allowed full…

Is the truth out there? NASA wants to help build public trust on UFOs

NASA is offering to join forces with the Pentagon on UFO research to move away “from sensationalism to science,” NASA’s chief administrator told reporters this week. The space agency released a report Thursday recommending that its scientists work with the Pentagon’s All-domain Anomaly Resolution Office, which spearheads the U.S. government’s investigations of UFOs. That coordination could allow better research and data collection on unknown objects in the Earth’s atmosphere. “NASA’s long-standing public trust, which is essential for communicating findings about…

University of Sydney data breach impacts recent applicants

  The University of Sydney (USYD) announced that a breach at a third-party service provider exposed personal information of recently applied and enrolled international applicants. The public university started operations in 1850 and has nearly 70,000 students and about 8,500 academic and administrative personnel. It is considered one of Australia’s most important educational institutes. In the data breach announcement, the university says that incident had a limited impact and the preliminary investigation found no evidence that local students, staff, or…

Push To Strip Fox’s Broadcast License Over Election Lies Gains New Momentum

  Last July, we noted how media reform activists had petitioned the FCC to revoke Fox News’ local broadcast license in Philadelphia. More specifically, the group argued that Fox News’ rampant election fraud propaganda technically violated the “character clause” embedded in the Communications Act the FCC is supposed to use to determine whether an organization should hold a broadcast license. To be clear, a single Fox broadcast affiliate losing its license to broadcast in Philly wouldn’t have much of an impact on…

Frost Over the World – Julian Assange (Aljazeera Interview – 2010)

Two founders behind Russian crypto mixer Tornado Cash charged by U.S. federal courts

The two founders behind Tornado Cash, a Russian cryptocurrency mixing service, have been charged by the U.S. Attorney’s Office for the Southern District of New York, according to a statement on Wednesday. Roman Storm and Roman Semenov were officially charged with conspiracy to commit money laundering, conspiracy to commit sanctions violations and conspiracy to operate an unlicensed money transmitting business, according to a newly unsealed indictment. Storm was arrested in Washington on Wednesday but Semenov still remains at large, the…

Scraped data of 2.6 million Duolingo users released on hacking forum

The scraped data of 2.6 million DuoLingo users was leaked on a hacking forum, allowing threat actors to conduct targeted phishing attacks using the exposed information. Duolingo is one of the largest language learning sites in the world, with over 74 million monthly users worldwide. In January 2023, someone was selling the scraped data of 2.6 million DuoLingo users on the now-shutdown Breached hacking forum for $1,500. This data includes a mixture of public login and real names, and non-public…

Canadian Media Orgs Said That Meta Linking To News Was Anticompetitive; Now They Say NOT Linking To News Is Anticompetitive

from the pick-a-lane,-guys dept This is just so painfully obnoxious. The legacy news media, spurred on by a welfare system that pretend free market supporter Rupert Murdoch dreamed up and convinced governments to implement, whereby the government would force internet companies, which had innovated and created new business models that worked, to suddenly be required to pay for sending traffic to legacy news media organizations which failed to innovate. It’s extreme corporate welfare, egged on by a guy who pretends…

Interpol takes down 16shop phishing-as-a-service platform

A joint operation between Interpol and cybersecurity firms has led to an arrest and shutdown of the notorious 16shop phishing-as-a-service (PhaaS) platform. Phishing-as-a-service platforms offer cybercriminals a one-stop-shop to conduct phishing attacks. These platforms typically include everything you need, including email distribution, ready-made phishing kits for well-known brands, hosting, data proxying, victim overview dashboards, and other tools that help increase the success of their operations. These platforms are a significant risk as they lower the bar of entry for inexperienced…

Canadian publishers want Meta investigated for blocking news, following the impending Canadian law that demands tech firms pay for news

Canadian news industry groups have asked the country’s antitrust regulator to investigate Meta Platforms’ decision to block news on its platforms in the country, accusing the Facebook parent of abusing its dominant position. Meta started blocking news on its Facebook and Instagram platforms for all users in Canada last week in response to a law requiring internet giants to pay for news articles. Canada’s Online News Act, part of a global trend to make tech firms pay for news, became…