DIRS.INFO The most relevant business & tech news

☆ Russia-linked hacking group claims to have targeted Indiana water plant
▼ + stars: | 2024-04-22 | by ( Sean Lyngaas | ) edition.cnn.com time to read: +3 min

CNN —Hackers targeted a wastewater treatment plant in Indiana on Friday evening, prompting plant managers to send maintenance personnel to investigate the suspicious activity, a local official told CNN. A Russia-linked hacking group claimed responsibility. The same group claimed credit for a string of hacking incidents against water facilities in Texas earlier this year. On Saturday, Russian-speaking hackers posted a video to social media claiming credit for a cyberattack on a TMU wastewater treatment plant. It’s the latest apparent effort by a group of Russian-speaking hackers to target water facilities in small American towns.

Persons: “, Jim Ankrum, “ TMU, ” Ankrum, Ankrum, Department of Homeland Security’s, Jake Sullivan, Mandiant, Ron Fabela, ” Fabela Organizations: CNN, Tipton Municipal Utilities, Tipton, Department of Homeland, Infrastructure Security Agency, US, Telegram, Infinity Squared Locations: Indiana, Russia, Texas, Tipton Municipal, Indianapolis, Muleshoe , Texas, United States, Tipton

☆ Sketches from US animation studios found on North Korean computer server
▼ + stars: | 2024-04-22 | by ( Sean Lyngaas | ) edition.cnn.com time to read: +11 min

The revelation comes from a trove of documents recently discovered by US researchers inside a computer server housed in North Korea. Logs from the North Korean computer server showed multiple visits from internet connections in northeast China, the US cybersecurity firm Mandiant told CNN. North Korean leader Kim Jong Un inspects an artillery firing drill of the Korean People's Army on March 7, 2024. Barnhart, the Mandiant researcher, said any company that hires a North Korean IT worker runs the risk of being targeted by North Korean hackers because of the close relationship between the two. Heinz Insu Fenkl, an expert in North Korean comics, said that animation and comics have been prominent in North Korean society since the country’s founding in 1948.

Persons: “, Nick Roy, Roy, Mandiant, Michael Barnhart, ”, Max ., Hannah Cosgrove, ” Cosgrove, Max, Lion Forge, Martyn Williams, Williams, ” Williams, Kim Jong Un, KCNA, Barnhart, ” Barnhart, CNN wouldn’t, Heinz Insu Fenkl, ” Fenkl, CNN’s Alex Marquardt, Mike Conte Organizations: CNN, North, US, Amazon Prime, Max, Warner Bros ., Korean, Stimson, FBI, Treasury, North Korean, Entertainment, Amazon, ”, Skybound, YouNeek Studios, Forge Entertainment, Lion Forge Entertainment, South Korean, South, US Treasury Department, Treasury Department, Korean People's Army, State, United Nations, North Korean Embassy Locations: North Korea, Korean, Boston, Washington, State, North Korean, China, CNN , California, Maryland, South Korea, Koreans, Pyongyang, Korea, California, New York, London, cybercrime

☆ A water tower in Texas suddenly started overflowing. It may be the work of Russian hackers.
▼ + stars: | 2024-04-18 | by ( Kenneth Niemeyer | ) www.businessinsider.com time to read: +1 min

Russian hackers are suspected of causing a Texas town's water tank to overflow earlier this year. Cybersecurity experts say the likely culprit is Sandworm, a Russian hacking group. AdvertisementIn January, a Texas town's water tank suddenly started overflowing, spewing a torrent of water to the ground below. But it's raising concerns this week, after the cybersecurity firm Mandiant said Wednesday that Russian hackers were likely behind it. Mandiant, which is owned by Google, attributed the attack in Muleshoe, Texas to Sandworm, a Russian hacking group.

Persons: —, Mandiant Organizations: Service, Google, Business Locations: Texas, Russian, Pennsylvania, Muleshoe , Texas, Sandworm

☆ Hack on a Texas water system may be the first of its kind by Russian hacking group
▼ + stars: | 2024-04-17 | by ( Kenneth Niemeyer | ) www.businessinsider.com time to read: +3 min

Russian hackers caused a Texas town's water tank to overflow in a suspected hack earlier this year. AdvertisementIn January, Russian hackers caused a small Texas town's water tank to overflow in what was a rare but worrying attack on US infrastructure. The Russian hacking group Sandworm is likely responsible for the attack on the water system in Muleshoe, Texas, the cyber-security firm Mandiant said on Wednesday. AdvertisementHackers posted a video to Telegram of themselves manipulating Muleshoe's water system, showing how they overpowered it and reset the controls, according to The Washington Post. Ramon Sanchez, Muleshoe's city manager, told CNN that the city's water tank overflowed for about 30 to 35 minutes.

Persons: —, Mandiant, Sandworm, Ramon Sanchez Organizations: Service, The Washington, Cyber Army, Post, CNN, Authorities, US Department of Justice, The Justice Locations: Texas, Russian, Pennsylvania, Muleshoe , Texas, Russia, American, Iran, Muleshoe's, South Korea, Ukraine

☆ Biden admin, US ports prep for cyberattacks as nationwide infrastructure is targeted
▼ + stars: | 2024-04-17 | by ( Lori Ann Larocco | ) www.cnbc.com time to read: +6 min

Anne Neuberger, Deputy National Security Advisor for Cyber and Emerging Technology, cited President Biden's signing in February of an executive order to strengthen the cybersecurity of U.S. ports . The nation's port system is the main point of entry for trade, employs 31 million people, and generates over $5.4 trillion for the U.S. economy. One of the key areas of concern for the Biden administration and the executive order is the security of Chinese-manufactured cranes. Biden administration officials recently warned the nation's governors about the threat to water systems. Isles said it is important to identify the critical safety and business systems at the nation's ports.

Persons: Seroka, Gene Seroka, Anne Neuberger, Biden's, Biden cybersecurity, Neuberger, Biden, Christopher Wray, Google's, Mandiant, Adam Isles, order's rulemaking Organizations: Department of Transportation Maritime Administration, Security Operations Center, National, Technology, Biden, Coast Guard, U.S, Mitsui, FBI, Congress, Chertoff Group, American Association of Port Authorities, CNBC, Port Locations: Angeles Harbor, United States, of Los Angeles, of, Angeles, U.S, China, State, Texas, Muleshoe, Cannon, Clovis , New Mexico, Iran, Pennsylvania, cybersecurity, Port of Los Angeles

☆ Russia-linked hacking group suspected of carrying out cyberattack on Texas water facility, cybersecurity firm says
▼ + stars: | 2024-04-17 | by ( Sean Lyngaas | ) edition.cnn.com time to read: +7 min

CNN —A hacking group with ties to the Russian government is suspected of carrying out a cyberattack in January that caused a tank at a Texas water facility to overflow, experts from US cybersecurity firm Mandiant said Wednesday. Muleshoe officials replaced the hacked software system and took other steps to secure the network, Sanchez said. “Regulations have not required this low-hanging fruit to be addressed,” Serino told CNN. “I’ve never experienced this before but … we’re aware that those threats are out there,” Poling told CNN by phone. “The haphazardness is part of their pathological emphasis on psychological impact,” Dan Black, a Mandiant analyst, told CNN.

Persons: Mandiant, Jake Sullivan, Sullivan, Ramon Sanchez, Sanchez, ”, Gus Serino, ” Serino, ” Anne Neuberger, ” The, Harris, Neuberger, Buster Poling, Mike Cypert, Poling, “ I’ve, ” Poling, Nick Conger, Sandworm, ” Dan Black Organizations: CNN, FBI, Environmental Protection Agency, EPA, White, ” The Biden, Hale Center, Russian Embassy, State of, GRU, “ Locations: Texas, US, Muleshoe, Pennsylvania, Iran, United States, Russian, Ukraine, Lockney’s, Hale, Washington ,, State of Texas

☆ UnitedHealth Group has paid more than $3 billion to providers following cyberattack
▼ + stars: | 2024-03-27 | by ( Ashley Capoot | In | ) www.cnbc.com time to read: +4 min

UnitedHealth Group has paid out an additional $1 billion to providers that have been impacted by the Change Healthcare cyberattack since last week, bringing the total amount of funds advanced to more than $3.3 billion, the company said on Wednesday. UnitedHealth, which owns Change Healthcare, discovered in February that a cyber threat actor had breached part of the unit's information technology network. The interruptions left many health-care providers temporarily unable to fill prescriptions or get reimbursed for their services by insurers. Many health-care providers rely on reimbursement cash flow to operate, so the fallout has been substantial. Federal agencies like the Centers for Medicare & Medicaid Services have introduced additional options to ensure that states and other stakeholders can make interim payments to providers, according to a release.

Persons: UnitedHealth, it's, Mandiant, Jamie Raskin, Andrew, Raskin, Biden Organizations: UnitedHealth, Healthcare, SEC, CNBC, American Hospital Association, Medicare, Medicaid Services, U.S . Department of Justice, of State, Wednesday, United Health, Palo Alto Networks, Change Healthcare Locations: Palo

☆ U.S. and Britain accuse China-linked hackers of ‘malicious’ cyber campaigns, announce sanctions
▼ + stars: | 2024-03-25 | by ( Ryan Browne | ) www.cnbc.com time to read: +4 min

BeeBright | Getty ImagesLONDON — The U.S. and U.K. on Monday accused hackers linked to the Chinese state of being behind "malicious" cyber campaigns targeting political figures, in moves expected to stoke tensions with Beijing. The British government also alleged that China-affiliated hackers were behind an attack that saw the data of millions of voters accessed. "I can confirm today that Chinese state-affiliated actors were responsible for two malicious cyber campaigns targeting our democratic institutions and parliamentarians," British Deputy Prime Minister Oliver Dowden said in a speech to Parliament on Monday. "We want now to be as open as possible with the House and the British public," Dowden said. U.S. hits out at ChinaSeparately, the U.S. Justice Department unsealed an indictment Monday accusing Chinese state-linked hackers of being behind cyber campaigns targeting U.S. businesses, government officials and politicians.

Persons: Oliver Dowden, Dowden, Ni Gaobin, Weng Ming, Cheng Feng, Peng Yaowen, Xiong Wang, Zhao Guangzong, Merrick B, Garland Organizations: Getty, stoke, Electoral, Electoral Commission, Embassy, Google, APT31, U.S . Justice Department, DOJ Locations: U.S, Beijing, China, Britain, APT31 ., United States

☆ UnitedHealth Group has paid more than $2 billion to providers following cyberattack
▼ + stars: | 2024-03-18 | by ( Ashley Capoot | In | ) www.cnbc.com time to read: +3 min

UnitedHealth Group said Monday that it's paid out more than $2 billion to help health-care providers who have been affected by the cyberattack on subsidiary Change Healthcare. "We continue to make significant progress in restoring the services impacted by this cyberattack," UnitedHealth CEO Andrew Witty said in a press release. "We know this has been an enormous challenge for health care providers and we encourage any in need to contact us." It also introduced a temporary funding assistance program to help health-care providers experiencing cash flow trouble because of the attack. A survey published by the American Hospital Association on Friday found that 94% of hospitals have experienced financial disruptions from the Change Healthcare attack.

Persons: it's, Andrew, UnitedHealth, Rick Pollack, Biden, UnitedHealth hasn't, Scott Gottlieb Organizations: UnitedHealth, Change Healthcare, Healthcare, Medicare, Medicaid Services, American Hospital Association, Administration, U.S . Department of Health, Human Services, Office, Civil Rights, Palo Alto Networks, Google Locations: Palo

The ramifications of a cyberattack on a critical health care technology company are still being felt across the U.S. nearly two weeks later. Change Healthcare has acknowledged the hack, which reportedly affected billing and care authorization portals. “Our experts are working to address the matter, and we are working closely with law enforcement and leading third-party consultants such as Mandiant and Palo Alto Networks on this attack against Change Healthcare’s systems,” Change Healthcare said. “On Feb. 21, 2024, we discovered a threat actor gained access to one of our Change Healthcare environments,” Change Healthcare said. A spokesperson affiliated with Change Healthcare declined to answer whether a ransom has been paid, according to Wired.

Persons: paychecks, Chuck Schumer, Jesse Ehrenfeld, Rick Pollack, “, ”, Schumer, ” Schumer, Pollack Organizations: Healthcare, Palo Alto Networks, New, American Medical Association, Department of Health, Human Services, American Hospital Association, HHS, AHA, UnitedHealth Group, The Washington Post, Justice Department, Health, Medicare, Medicaid Services, Wired, Change Healthcare Locations: U.S, Palo, New York, Optum

☆ Ransomware group Blackcat is behind cyberattack on UnitedHealth division, company says
▼ + stars: | 2024-02-29 | by ( Ashley Capoot | In | ) www.cnbc.com time to read: +4 min

Traders work at the post where UnitedHealth Group is traded on the floor of the New York Stock Exchange. The company said it's working with Mandiant, which is owned by Google , and cybersecurity software vendor Palo Alto Networks . In a since-deleted post on the dark web, Blackcat said Wednesday that it was behind the attack on Change Healthcare's systems. Change's parent company UnitedHealth Group said it discovered that a cyber threat actor breached part of the unit's information technology network on Feb. 21, according to a filing with the SEC. Brett Callow, a threat analyst at the cybersecurity company Emsisoft, said ransomware groups will often make posts like these in an effort to bring victims to the negotiating table.

Persons: that's, Blackcat, Brett Callow, Emsisoft, Callow, they're, UnitedHealth, John Riggi, Riggi Organizations: New York Stock Exchange, Healthcare, CNBC, Google, Palo Alto Networks, UnitedHealth, SEC, U.S . Department of Justice, Change Healthcare, American Hospital Association Locations: U.S

☆ Outages from Change Healthcare cyberattack causing financial 'mess' for doctors
▼ + stars: | 2024-02-29 | by ( Ashley Capoot | In | ) www.cnbc.com time to read: +7 min

Small private practices and health-care providers are facing mounting financial pressures as crucial reimbursement systems remain down for the ninth day, following the cyberattack on Change Healthcare. Change Healthcare offers tools for payment and revenue cycle management that help facilitate transactions between providers and most major insurance companies. As of Thursday, Change Healthcare has not shared any updates about when it expects its systems to be back online. Change Healthcare on Thursday said that ransomware group Blackcat is behind the attack. He said it's not clear whether Change Healthcare will take on the responsibility of processing all the claims or if he'll need to hire additional staff to help.

Persons: Purvi, hasn't, Parikh, Kiranjit, immunologist, Dan Inder Sraow, it's, Sraow, Dr, Jesse Ehrenfeld, Ehrenfeld, Ravi Parikh Organizations: Healthcare, Change Healthcare, UnitedHealth Group, U.S . Securities, Exchange Commission, CNBC, U.S . Department of Justice, Google, Palo Alto Networks, Kiranjit Khalsa, Khalsa, American Medical Association, UnitedHealth, DOJ, Wall Locations: New York City, Scottsdale , Arizona, Phoenix , Arizona, U.S

☆ An infamous hacking group is reportedly behind the cyberattack that has left US pharmacies reeling
▼ + stars: | 2024-02-27 | by ( Camilo Fonseca | ) www.businessinsider.com time to read: +3 min

A high-profile ransomware gang is responsible for the outage that has paralyzed US pharmacies, Reuters reported. Blackcat is behind the attack on UnitedHealth Group's claims management arm last week, per the report. The outage at Chain Healthcare, the payment management arm of healthcare giant UnitedHealth Group, was caused by a ransomware attack by hackers affiliated with Blackcat, Reuters reported, citing two unnamed sources. AdvertisementLast week's attack on Change Healthcare forced its parent company to disconnect its own systems "to prevent further impact," according to UnitedHealth Group. But experts aren't sure if the group responsible for last week's hack was sponsored by foreign actors.

Persons: Blackcat, UnitedHealth, —, Reddit, cybercriminals, Brett Callow Organizations: Reuters, Service, Healthcare, UnitedHealth, Blackcat, Caesars Entertainment, MGM Resorts, UnitedHealth Group, American Pharmacists Association, SEC, Colonial Pipeline, Google, Palo Alto Networks

☆ Outages from cyberattack at UnitedHealth's Change Healthcare extend to seventh day as pharmacies deploy workarounds
▼ + stars: | 2024-02-27 | by ( Ashley Capoot | In | ) www.cnbc.com time to read: +7 min

Change Healthcare's systems are down for the seventh day after a cyber threat actor gained access to its network last week. Change Healthcare offers tools for payment and revenue cycle management, and its system outages have disrupted operations in pharmacies and health systems across the country. Change Healthcare merged with Optum in 2022. Rising number of health-care cyberattacksThe attack on Change Healthcare comes after 2023 set a grim record for health-related cybercrime. Impact of Change Healthcare's breachUnitedHealth has not specifically disclosed exactly which Change Healthcare systems have been affected, but the fallout from the cyberattack has caused a ripple of problems across the U.S. health-care system.

Persons: UnitedHealth, John Riggi, Riggi, Cliff Steinhauer, Steinhauer, Cary Brazeman, Brazeman, hadn't Organizations: New York Stock Exchange, UnitedHealth Group, U.S . Securities, Exchange, Change Healthcare, Change, Optum, Healthcare, Palo Alto Networks, Google, CNBC, American Hospital Association, National Cybersecurity Alliance, CVS Health, Walgreens Locations: U.S, Palm Springs

☆ Chinese firm behind ‘news’ websites pushes pro-Beijing content globally, researchers find
▼ + stars: | 2024-02-08 | by ( ) www.cnbc.com time to read: +3 min

Spread over websites in 30 countries, the propaganda material is interspersed with news aggregated from local news outlets and Chinese state media, according to a research report the Toronto-based group released on Wednesday. More than 100 websites disguised as local news outlets in Europe, Asia and Latin America are pushing pro-China content in a widespread influence campaign linked to a Beijing public relations firm, digital watchdog Citizen Lab has found. Spread over websites in 30 countries, the propaganda material is interspersed with news aggregated from local news outlets and Chinese state media, according to a research report the Toronto-based group released on Wednesday. Citizen Lab said the campaign began in mid-2020 and traced the network to public relations firm Shenzhen Haimaiyunxiang Media Co., Ltd., also known as Haimai. But a "press releases" button at a corner of its homepage leads to a range of Chinese state media articles on topics such as China's contribution to the global economic recovery and its push towards technological innovation.

Persons: Alberto Fittarelli, Citizen Lab, Mandiant Organizations: Citizen, Shenzhen Haimaiyunxiang Media, Roma, Times Locations: Lujiazui, Shanghai, China, Toronto, Europe, Asia, America, Beijing, United States, Shenzhen, Washington, Italian

☆ Illicit Iranian programs targeted by sanctions and criminal charges, US says
▼ + stars: | 2024-02-02 | by ( Michael Conte | Sean Lyngaas | ) edition.cnn.com time to read: +5 min

Washington CNN —The US announced a number of measures including sanctions and criminal charges targeting a range of malicious Iranian initiatives, including their cyberwarfare and drone programs, as well as Iran’s alleged illegal oil trafficking to fund foreign terrorist organizations. Earlier in the day, the Treasury Department announced sanctions against several Iran- and Hong Kong-based companies for allegedly supporting Iran’s drone program and missile production. The three alleged front companies in Hong Kong and an Iranian subsidiary allegedly obtained components, such as engines and carburetors, for Iran’s drone program. Treasury also announced sanctions targeting the head of Iran’s Islamic Revolutionary Guard Corps Cyber–Electronic Command and five other senior officials for alleged cyberattacks against critical infrastructure in the US and other countries. That’s a reference to a series of hacks that defaced computers at multiple water utilities in the US in November.

Persons: Biden, ”, General Merrick Garland, Christopher Wray, Brian Nelson, Matthew Miller, That’s, ” John Hultquist, Mandiant, CNN’s Hannah Rabinowitz Organizations: Washington CNN, US, Justice Department, Islamic Revolutionary Guard Corps, Department, DOJ, FBI, Treasury Department, Treasury, Terrorism, Financial, Command, Google, CNN, Boston Children’s Hospital Locations: Iran, Jordan, Omani, ”, Washington ,, United States, Hong Kong, Iranian, Israel, Boston, Tehran

WASHINGTON (AP) — Chinese government hackers are busily targeting water treatment plants, the electrical grid, transportation systems and other critical infrastructure inside the United States, FBI Director Chris Wray will tell House lawmakers on Wednesday in a fresh warning from Washington about Beijing's global ambitions. “China’s hackers are positioning on American infrastructure in preparation to wreak havoc and cause real-world harm to American citizens and communities, if or when China decides the time has come to strike,” Wray will say. The comments align with assessments from outside cybersecurity firms including Microsoft, which said in May that state-backed Chinese hackers have been targeting U.S. critical infrastructure and could be laying the technical groundwork for the potential disruption of critical communications between the U.S. and Asia during future crises. The following month, Mandiant said that suspected state-backed Chinese hackers had used a security hole in a popular email security appliance to break into the networks of hundreds of public and private sector organizations globally. The Chinese government has lashed out at the committee, demanding that its members “discard their ideological bias and zero-sum Cold War mentality.”

Persons: Chris Wray, Wray, “, ” Wray, Mandiant, they’re, Mike Gallagher of Organizations: WASHINGTON, Chinese Communist Party, Microsoft, U.S, Republican Rep Locations: United States, Washington, China, Asia, Mike Gallagher of Wisconsin

☆ Chinese hackers are determined to 'wreak havoc' on U.S. critical infrastructure, FBI director warns
▼ + stars: | 2024-01-31 | by ( ) www.cnbc.com time to read: +2 min

Chinese government hackers are busily targeting water treatment plants, the electrical grid, transportation systems and other critical infrastructure inside the United States, FBI Director Chris Wray will tell House lawmakers on Wednesday in a fresh warning from Washington about Beijing's global ambitions. "China's hackers are positioning on American infrastructure in preparation to wreak havoc and cause real-world harm to American citizens and communities, if or when China decides the time has come to strike," Wray will say. The comments align with assessments from outside cybersecurity firms including Microsoft, which said in May that state-backed Chinese hackers have been targeting U.S. critical infrastructure and could be laying the technical groundwork for the potential disruption of critical communications between the U.S. and Asia during future crises. The following month, Mandiant said that suspected state-backed Chinese hackers had used a security hole in a popular email security appliance to break into the networks of hundreds of public and private sector organizations globally. The Chinese government has lashed out at the committee, demanding that its members "discard their ideological bias and zero-sum Cold War mentality."

Persons: Chris Wray, Wray, Mandiant, they're, Mike Gallagher of Organizations: Chinese Communist Party, Microsoft, U.S, Republican Rep Locations: United States, Washington, China, Asia, Mike Gallagher of Wisconsin

It said the same highly skilled Russian hacking team behind the SolarWinds breach was responsible. “A very small percentage” of Microsoft corporate accounts were accessed, the company said, and some emails and attached documents were stolen. A company spokesperson said Microsoft had no immediate comment on which or how many members of its senior leadership had their email accounts breached. In a regulatory filing Friday, Microsoft said it was able to remove the hackers' access from the compromised accounts on or about Jan. 13. After gaining a foothold, they used the account's permissions to access the accounts of the senior leadership team and others.

Persons: “ Organizations: BOSTON, —, Microsoft, . Securities, Exchange, SEC, Google, Cozy, Justice, Treasury Locations: — State, Russian, Redmond , Washington, U.S, Europe

The Aliquippa water authority's chairman, Matthew Mottes, said federal officials told him that hackers also breached four other utilities and an aquarium. The device breached in Pennsylvania was made by Israel-based Unitronics, according to the U.S. Cybersecurity and Infrastructure Security Agency. Known as a programmable logic controller, it is used across a wide spectrum of industries including water and sewage-treatment utilities, electric companies and oil and gas producers. Experts say many water utilities have paid insufficient attention to cybersecurity. In Pennsylvania, the hack prompted the water authority to temporarily halt pumping Saturday in a remote station that regulates water pressure for customers in two nearby towns.

Persons: John Fetterman, Bob Casey, Chris Deluzio, ”, ” Fetterman, Casey, Deluzio, General Merrick Garland, “, ‘, Israel ’, Matthew Mottes, We’ve, that’s, ” Mottes, Sergey Shykevich, Unitronics, Crews, Biden Organizations: U.S . Justice Department, U.S . Rep, Municipal Water Authority, Twitter, U.S, Cybersecurity, Infrastructure Security Agency, Environmental Protection Agency Locations: HARRISBURG, Pa, Pittsburgh, Sens, Pennsylvania, United States, Israel, Aliquippa , Pennsylvania, Iran, hacktivism, Gaza, U.S, Missouri , Arkansas, Iowa

☆ Exclusive: This pizza box-sized equipment could be key to Ukraine keeping the lights on this winter
▼ + stars: | 2023-11-21 | by ( Sean Lyngaas | ) edition.cnn.com time to read: +10 min

Officials from multiple US agencies played a quiet role in getting the Cisco equipment into Ukraine, sources say. In this undated photo, an employee at Ukraine’s state-owned grid operator, Ukrenergo, works on the power grid. As the world’s largest maker of computer networking equipment, Cisco had resources to spare. The switch allows an electric substation – which has the crucial task of converting power from high to low voltage – to communicate with other parts of a power grid. Years of Russian attacks on Ukraine’s gridBehind the scenes, US officials are often coordinating the delivery of key technology to Ukraine.

Persons: CNN —, Illia Vitiuk, Biden, Palantir, Ukrenergo, Joe Marshall, intently, Marshall, he’d, ”, ” Marshall, Taras Vasyliv, ” Vasyliv, Andrew Kravchenko, Vasyliv, Ukraine “, ” NERC Organizations: CNN, Engineers, Cisco, US Air Force, Washington, SpaceX, Microsoft, Pentagon, Department of Energy, Department of Commerce, Stanford University, GPS, Cisco’s, Ukrenergo, Bloomberg, Getty, GRU, US Department of Defense, Department of Homeland Security, Department of Locations: Austin , Texas, Ukraine, Russian, Stanford, Russia, Ukrainian, Denver, Ukraine’s, Kyiv, Silicon Valley, Alabama, East Coast, Germany, Rzeszów, Poland, California, ”, North America

☆ How an Indian startup hacked the world
▼ + stars: | 2023-11-16 | by ( ) www.reuters.com time to read: +41 min

The Indian company hacked on an industrial scale, stealing data from political leaders, international executives, prominent attorneys and more. Run by a pair of brothers, Rajat and Anuj Khare, the company began as a small Indian educational startup. The Indian company hacked on an industrial scale, stealing data from political leaders, international executives, sports figures and more. Back in 2012, Kristi Rogers was an executive at Aegis, a London-based security company. Canadian security company GardaWorld, which acquired Aegis in 2015, said it had no information on the incident.

Persons: Chuck Randall, Randall, “, ” Randall, ”, Randall’s inbox, Appin, Rajat, Anuj Khare, Rajat Khare’s, Clare Locke, Khare “, Khare, ” Clare Locke, Ted Kaczynski, Anuj, who’ve, SentinelOne, Tom Hegel, Appin “, Hegel, Mandiant, ” Hegel, Shane Huntley, ” Huntley, Google’s Huntley, ‘, Jochi Gómez, Gómez, Halevi, Tamir Mor, Russian oligarch Boris Berezovsky, Mohamed Azmin Ali, ” Mor, Berezovsky, Azmin, Mor, Roman Abramovich, Mark Hastings, Hastings, didn’t, Jim H, ” Jim H, Jim H’s, Kristi Rogers, Mike Rogers, he’s, Global’s, sully, Rogers, Damian Perl, – “, Steven Santarpia, ” Santarpia, Santarpia, Leonel Fernández, ” Fernández, Rajat Khare, “ Let’s, Ministry of Home Affairs didn’t, Peter Hargitay, Stevie, Billing, ” Stevie, ’, ” Peter Hargitay, Mookhey, Norman Shark, Jonathan Camp, Shark, Camp, Norman, Dominican Republic –, Dan Brady, Sandra Schweingruber, ” Schweingruber, Schweingruber, Brady, ” Gómez, –, ” –, Anna Carter, Mark Califano, ” Rajat Khare’s, India’s, Educomp, Karen Hunter, Hunter, Bryan, Rajat’s, Vijay Kumar, Deepak Kumar, Kumar, ACSG, Jay Solomon, Solomon, ” Rebsec’s, Vishavdeep Singh, Rebsec, CyberRoot, Sumit Gupta, Gupta, Raphael Satter, Zeba Siddiqui, Christopher Bing, Ryan McNeill, Corinne Perkins, John Emerson, Marla Dickerson Organizations: Reuters, Google, Harvard University, U.S, Symantec, Appin, Caribbean, El, Israeli Defense Forces, Commando, Quillon Law, U.S . House Intelligence, The Michigan Republican, U.S . Senate, Aegis, Global Security, Security, Rogers, Army Corps of Engineers, Rotary, Aegis ’, Global, ” Reuters, Britain’s, Appin Software Security, Ltd, Appin Security, –, Research, Analysis, Intelligence Bureau, Indian, India’s Ministry of Home Affairs, India’s Ministry of Defense, of Home Affairs, Central Bureau of Investigation, CBI, Federal Bureau of Investigation, Ministry of Home Affairs, Telenor, Broadcom, FBI, Dominican, Criminal Investigation Service, Appin Security Group, CERT, country’s, Bureau of Investigation, Educomp, State Bank of India, State Bank, The National Security Agency, NSA, U.S ., Swiss, Appin Technology, India’s Ministry, Corporate Affairs, Control Security Global, Technology, Kumar, Facebook, Meta, BellTroX, Services, Street, New, Rebsec, BellTroX’s, Hire Locations: Long, New Delhi, India, Yorker, Paris, Swiss, cybersecurity, Appin, Dominican, California, “, Dominican Republic, El Siglo, United States, Britain, Switzerland, New York, French, New Jersey, Israel, Russian, Malaysian, London, Rwandan, Virginia, Canadian, Chuck@shinnecock.org, Texas, Indian, India’s Punjab, Pakistan, Zurich, Australia, Norway, Oslo, Brady, Former, ”, U.S, Islip, Shinnecock, Washington, cyberespionage

Caesars paid around $15 million in ransom to regain access to its systems from the hackers, according to reporting by the Wall Street Journal. Some have been collecting evidence leading to the hackers' identities and are assisting law enforcement, according to the five insiders. The sources say that, following the September casino hacks, the FBI's investigation took on new urgency. Mandia didn't respond directly when asked whether Scattered Spider's identities were known to law enforcement. But he did say that there was no excuse for not arresting hackers who operated from the West.

Persons: Bridget Bennett, Michael Sentonas, Sentonas, Alphabet's, James Foster, Foster, cybercriminals, gona, Kevin Mandia, Mandiant, you've, Zeba Siddiqui, Raphael Satter, Christopher Bing, Chris Sanders, Claudia Parsons Organizations: MGM, MGM Resorts, REUTERS, FRANCISCO, U.S . Federal Bureau of Investigation, FBI, MGM Resorts International, Caesars Entertainment, Industry, Reuters, Department of Justice, Caesars, Wall Street, Palo Alto Networks, Microsoft, ex, Telegram, Thomson Locations: Las Vegas , Nevada, U.S, WASHINGTON, America, Palo, American, Baltimore , Maryland, United States, Newark , New Jersey, sextortion, San Francisco, Washington

CNN —The Chinese government has built up the world’s largest known online disinformation operation and is using it to harass US residents, politicians, and businesses—at times threatening its targets with violence, a CNN review of court documents and public disclosures by social media companies has found. Victims face a barrage of tens of thousands of social media posts that call them traitors, dogs, and racist and homophobic slurs. While tech and social media companies have shut down thousands of accounts targeting these victims, they’re outpaced by a slew of new accounts emerging virtually every day. As part of a mission “to manipulate public perceptions of [China], the Group uses its misattributed social media accounts to threaten, harass and intimidate specific victims,” the complaint states. In the past, the Spamouflage network mostly focused on issues domestically relevant to China.

Persons: –, Xi Jinping, Biden, Mike Gallagher, Chen Pokong, ”, Chen, “, Spamouflage’s, Liu Pengyu, ” Liu, Jiayang, Darren Linvill, hasn’t, Fan, Communist Party playbook, Mandiant, Nancy Pelosi, ” Ben Nimmo, George Floyd’s, Ben Nimmo, Lindsay Gorman, Gorman, ” Linvill, Linvill, Spamouflage, Jiajun Qiu, Qiu, ” Qiu Organizations: CNN, US State Department, FBI, Communist Party, Meta, Google, ”, CCP, US Department of Justice, Department, DOJ, China’s Ministry of Public Security, Group, New Yorker, telltale, Media, Clemson University, Capitol, Department of Homeland Security, Marshall Fund’s Alliance, Securing Democracy, YouTube Locations: United States, Beijing, San Francisco, China “, New York, China, New York City, America, Washington, Hong Kong, US, Texas, Virginia, Manassas , Virginia

☆ Russian Spies Behind Cyberattack on Ukrainian Power Grid in 2022 - Researchers
▼ + stars: | 2023-11-09 | by ( Nov. | At A.M. | ) www.usnews.com time to read: +2 min

By James PearsonLONDON (Reuters) - Russian cyber spies were behind a hack which disrupted part of Ukraine's power grid in late 2022, U.S. cybersecurity firm Mandiant, part of Google, said in a report on Thursday, in a rare and advanced form of cyberwarfare. Last October, a massive wave of Russian missile strikes on Ukraine's power network caused blackouts in many parts of the country, prompting Kyiv to halt electricity exports and leaving four regions temporarily without electricity. Sandworm hackers rose to prominence in 2015 after a separate cyberattack against Ukraine’s power grid which cut off power for around 255,000 people. The disruptive, digital, intrusion was widely considered to be one of the first, known, successful cyberattacks against a power network. “There have only been a handful of incidents similar to this, with the majority carried out by Sandworm,” Mandiant analyst Nathan Brubaker said.

Persons: James Pearson, ”, Sandworm, Nathan Brubaker, Christopher Bing, Sharon Singleton Organizations: James Pearson LONDON, Google Locations: Russian, Russia, Ukraine, Kyiv, London, Washington

Search resuls for: "Mandiant"

25 mentions found