DIRS.INFO The most relevant business & tech news

The total number of recent victims from the online extortion ring has reached 121 organizations, according to Brett Callow, whose cybersecurity company Emsisoft helps companies respond to digital shakedown attempts. In 2021, Ukrainian authorities announced the arrests of six people tied to cl0p, but it's not clear that they were core members of the group, which continued to hack victims. Plundering file transfer protocols has become increasingly popular as hackers shift from encrypting data to simply stealing files and threatening to release them unless a ransom is paid. Many of the organizations stress that the target of the hack is the file transfer service, not their systems. The FBI said it was "aware of and investigating the recent exploitation of a MOVEit vulnerability by malicious ransomware actors."

Persons: Brett Callow, encrypting, TrendMicro, didn't, Cl0p, Emsisoft, Charles Carmakal, Raphael Satter, Christopher Bing, James Pearson, Cynthia Osterman Organizations: University of California, Siemens Energy, Abbvie Inc, Schneider, Publicly, Sony, Shell PLC, Government, U.S . Energy Department, Alphabet Inc, FBI, Thomson Locations: Los Angeles, Russia, Washington, London

Separately, state agencies said late Thursday that millions of people in Louisiana and Oregon had their data compromised in a security breach. The cyberattack has targeted federal and state agencies. No other federal agencies have confirmed being impacted. And on Thursday, state agencies said 3.5 million Oregonians with driver’s licenses or state ID cards had been impacted by a breach as well as anyone with that documentation in Louisiana. But much of the responsibility now lies on businesses and federal agencies rather than individuals, according to Cattanach.

Persons: “, ” Robert Cattanach, Dorsey, you’re, ”, Clop, Brett Callow, Emsisoft, ” Callow, Aon, they’ve, ” CISA, Allan Liska Organizations: CNN, Infrastructure Security Agency, Whitney, Department of Justice, The Department of Energy, BBC, British Airways, Boston Globe, Sydney Phoenix, US Department of Homeland, Johns Hopkins University, University of Georgia, –, Progress Software Locations: Russian, Louisiana, Oregon, Minnesota, Illinois, Arlington , VA, Baltimore, Georgia’s

☆ Millions of Americans’ personal data exposed in global hack
▼ + stars: | 2023-06-16 | by ( Sean Lyngaas | ) edition.cnn.com time to read: +5 min

CNN —Millions of people in Louisiana and Oregon have had their data compromised in the sprawling cyberattack that has also hit the US federal government, state agencies said late Thursday. The breach has affected 3.5 million Oregonians with driver’s licenses or state ID cards, and anyone with that documentation in Louisiana, authorities said. The hackers exploited a flaw in a popular file-transfer software known as MOVEit made by Massachusetts-based Progress Software. Hundreds of organizations across the globe have likely had their data exposed after the hackers used the flaw to break into networks in recent weeks. US officials described the cyberattack as an opportunistic, financially motivated hack that has not caused disruptions to agency services.

Persons: Casey Tingle, Aon, John Bel Edwards, ” Munish Walther, Puri, It’s, ”, Jeff Greene, “, Greene Organizations: CNN, Department of Energy, BBC, British Airways, University of Georgia, Social, Louisiana Office of Motor Vehicles, Louisiana Gov, US, Progress Software, FBI, Infrastructure Security Agency, National Security Council, Aspen Locations: Louisiana, Oregon, Russian, Massachusetts, Clop, Ukraine

☆ US government hit in global cyberattack
▼ + stars: | 2023-06-15 | by ( Sean Lyngaas | ) edition.cnn.com time to read: +3 min

CNN —“Several” US federal government agencies have been hit in a global cyberattack that exploits a vulnerability in widely used software. A CISA spokesperson had no comment when CNN asked who carried out the hack of federal agencies and how many have been affected. But the news adds to a growing tally of victims of a sprawling hacking campaign that began two weeks ago and has hit major US universities and state governments. As of Thursday morning, the dark website did not list any US federal agencies. Progress, the US firm that owns the MOVEit software, has also urged victims to update their software packages and has issued security advice.

Persons: Eric Goldstein, cybersecurity, “, – Organizations: CNN, Infrastructure Security Agency, Johns Hopkins University, University of Georgia, –, BBC, British Airways Locations: Russian, Baltimore, Georgia’s, Minnesota, Illinois

☆ Clop: Russian-speaking cyber gang claims credit for hack of BBC and British Airways employee data
▼ + stars: | 2023-06-07 | by ( Sean Lyngaas | ) edition.cnn.com time to read: +3 min

CNN —A group of Russian-speaking cyber criminals has claimed credit for a sweeping hack that has compromised employee data at the BBC and British Airways and left US and UK cybersecurity officials scrambling to respond. The compromise of employee data at the BBC and British Airways came via a breach of a human resources firm, Zellis, that both organizations use. Numerous US state government agencies use the MOVEit software, but it’s unclear how many agencies, if any, have been compromised. The US Cybersecurity and Infrastructure Security Agency has ordered all federal civilian agencies to update the MOVEit software in light of the hack. Progress, the US firm that owns the MoveIT software, has also urged victims to update their software packages and has issued security advice.

Persons: ” They’ve, —, CISA, Eric Goldstein, Charles Carmakal, ”, Allan Liska Organizations: CNN, BBC, British Airways, Infrastructure Security Agency, Federal Bureau of Investigation, Progress Software, FBI, Mandiant Consulting, Google, LinkedIn Locations: Canada

☆ Charles Is Crowned King in Ancient Ceremony With Modern Twists
▼ + stars: | 2023-05-06 | by ( Mark Landler | ) www.nytimes.com time to read: +1 min

Anointed with holy oil and enthroned on St. Edward’s chair, King Charles III was crowned on Saturday in a solemn ritual that stretches back more than a millennium but unfolded with multiple concessions to the modern age. The coronation, the first since Queen Elizabeth II’s in 1953, was a royal spectacle of the kind that only Britain still stages: four hours of pageantry that began with the clip-clop of horses’ hooves on Pall Mall and ended with the vaporous trails of acrobatic jets streaking above Buckingham Palace, as Charles watched from the balcony with Queen Camilla, who had been crowned shortly after him. Yet this was a coronation for a radically different country than when Elizabeth first wore the crown. Jewish, Muslim, Hindu, Buddhist, and Sikh leaders greeted Charles as he left Westminster Abbey, and there were various attempts — not always successful — to make a medieval ritual more inclusive and democratic. Female bishops from the Church of England took part in the liturgy; hymns were sung in Welsh, Scottish and Irish Gaelic; and when Charles, 74, took a sacred oath to defend the Protestant faith, he also offered a personal prayer, in which he promised to be a pluralistic monarch for a diverse society.

☆ Court records show law firm Brown Rudnick was hacked in 2020 and its insurance paid a $2 million ransom
▼ + stars: | 2022-11-08 | by ( Jack Newsham | ) www.businessinsider.com time to read: +2 min

The law firm's cyber insurer paid a ransom and wants to hold a tech vendor liable for $2.4 million. The law firm was one of several breached, including Goodwin Procter and Jones Day. The law firm Brown Rudnick paid criminal hackers $2 million in 2020 so they wouldn't publish confidential records online, and its insurer is still trying to recoup the money it spent responding to the attack, Insider has discovered. The software company paid out millions of dollars to settle with people and businesses impacted by the hack. Brown Rudnick’s name was included in a technical alert that was pasted into the lawsuit by its insurance company.

Search resuls for: "Clop"

7 mentions found