DIRS.INFO The most relevant business & tech news

☆ Caesars and MGM grapple with cybeattacks as their security in Vegas falls under scrutiny
▼ + stars: | 2023-09-14 | by ( Sean Lyngaas | ) edition.cnn.com time to read: +3 min

CNN —Hackers stole Social Security numbers and driver’s license numbers from a “significant number” of loyalty program customers of Caesars Entertainment, the hospitality and casino giant said Thursday. The hackers broke into computer systems via “a social engineering attack” on an IT support contractor, according to the filing. “We have taken steps to ensure that the stolen data is deleted by the unauthorized actor, although we cannot guarantee this result,” Caesars Entertainment said. The company said on Monday, when news of the incident broke, that it had shut down certain computer systems to protect its data. Bloomberg News reported on Wednesday that Scattered Spider was responsible for the pair of cyberattacks on Caesars Entertainment and MGM Resorts.

Persons: “, ”, Charles Carmakal, Mandiant, Rachel Tobac Organizations: CNN, Caesars Entertainment, MGM Resorts, Securities and Exchange Commission, FBI, Mandiant Consulting, Google, Bloomberg, SocialProof Locations: Vegas, Las Vegas, United States, United Kingdom

☆ Clop: Russian-speaking cyber gang claims credit for hack of BBC and British Airways employee data
▼ + stars: | 2023-06-07 | by ( Sean Lyngaas | ) edition.cnn.com time to read: +3 min

CNN —A group of Russian-speaking cyber criminals has claimed credit for a sweeping hack that has compromised employee data at the BBC and British Airways and left US and UK cybersecurity officials scrambling to respond. The compromise of employee data at the BBC and British Airways came via a breach of a human resources firm, Zellis, that both organizations use. Numerous US state government agencies use the MOVEit software, but it’s unclear how many agencies, if any, have been compromised. The US Cybersecurity and Infrastructure Security Agency has ordered all federal civilian agencies to update the MOVEit software in light of the hack. Progress, the US firm that owns the MoveIT software, has also urged victims to update their software packages and has issued security advice.

Persons: ” They’ve, —, CISA, Eric Goldstein, Charles Carmakal, ”, Allan Liska Organizations: CNN, BBC, British Airways, Infrastructure Security Agency, Federal Bureau of Investigation, Progress Software, FBI, Mandiant Consulting, Google, LinkedIn Locations: Canada

☆ Hackers use flaw in popular file transfer tool to steal data, researchers say
▼ + stars: | 2023-06-02 | by ( Zeba Siddiqui | ) www.reuters.com time to read: +2 min

SAN FRANCISCO, June 1 (Reuters) - Hackers have stolen data from the systems of a number of users of the popular file transfer tool MOVEit Transfer, U.S. security researchers said on Thursday, one day after the maker of the software disclosed that a security flaw had been discovered. Software maker Progress Software Corp (PRGS.O), after disclosing the vulnerability on Wednesday, said it could lead to potential unauthorized access into users' systems. The managed file transfer software made by the Burlington, Massachusetts-based company allows organizations to transfer files and data between business partners and customers. Such "zero-day," or previously unknown, vulnerabilities in managed file transfer solutions have led to data theft, leaks, extortion and victim-shaming in the past, Mandiant said. Pitt did not have a comment on who might have been trying to steal data by exploiting the flaw.

Persons: Ian Pitt, Charles Carmakal, Mandiant, Carmakal, Rapid7, Pitt, Zeba Siddiqui, Christopher Cushing Organizations: FRANCISCO, Progress Software Corp, Software, Reuters, Rapid7 Inc, Mandiant Consulting, Google, Thomson Locations: Burlington , Massachusetts, San Francisco

☆ North Korean hackers breach software firm in significant cyberattack
▼ + stars: | 2023-04-20 | by ( Sean Lyngaas | ) edition.cnn.com time to read: +4 min

CNN —Suspected North Korean hackers infiltrated a software firm that claims hundreds of thousands of customers around the world in a cyberattack that shows Pyongyang’s advanced hacking capabilities, private investigators said Thursday. But it’s the latest evidence that North Korean hackers are pulling out all the stops to break into organizations to steal or spy on them in support of dictator Kim Jong Un’s strategic interests. A recent CNN investigation found a rampant effort by North Korean hackers to steal cryptocurrency and launder it into hard cash that might help fund the regime’s weapon’s programs. Trading Technologies has not been able to verify Mandiant’s findings yet because the company just became aware of the issue last week, a spokesperson for Trading Technologies told CNN on Thursday. “What we do know with certainty is that 3CX is not a vendor or a customer of Trading Technologies,” the Trading Technologies spokesperson said.

☆ Phishing attacks are increasing and getting more sophisticated. Here's how to avoid them
▼ + stars: | 2023-01-07 | by ( Bob Violino | ) www.cnbc.com time to read: +5 min

That's a 61% increase in the rate of phishing attacks compared with 2021. Criminals using phishing attacks based on tax season, shopping dealsOne of the iterations of phishing that people need to be aware of is spearphishing, a more targeted form of phishing that often uses topical lures. Phishing themes can also be generic, such as an email that appears to be from a technology vendor about resetting an account, McNamara said. What people should do to ward off phishing attemptsIndividuals can take steps to better defend themselves against phishing attacks. Another good practice is to use anti-phishing software and other cyber security tools as protection against potential attacks and to keep personal and work data safe.

Search resuls for: "Mandiant Consulting"

5 mentions found