DIRS.INFO The most relevant business & tech news

☆ Brazen ransomware attack on US unit of Chinese banking giant has financial sector on alert
▼ + stars: | 2023-11-10 | by ( Sean Lyngaas | ) edition.cnn.com time to read: +5 min

It led to a flurry of behind-the-scenes coordination with the affected bank and across the financial sector about the threat. The hackers hit New York-based ICBC Financial Services, a subsidiary of the world’s largest bank by assets and a Chinese state-owned institution. ICBC Financial Services did not respond to CNN’s request for comment on Friday. “If China sees this as a black eye, they may demand action from the Russian government,” Liska told CNN. LockBit ransomware was the most deployed ransomware around the world in 2022, according to US cybersecurity officials.

Persons: ”, “, ” Jon Miller, Halcyon, BNY Mellon, LockBit, Allan Liska, ” Liska, JPMorgan Chase, LockBit ransomware, ” Will Thomas Organizations: CNN, Commercial Bank of, Intelligence, Financial Services, Treasury, ICBC Financial, Reuters, JPMorgan, FBI, Infrastructure Security Agency, Treasury Department Locations: Commercial Bank of China, US, York, China, Russia, United States, Iran, cybersecurity

☆ How the GOP muzzled the quiet coalition that fought foreign propaganda
▼ + stars: | 2023-11-10 | by ( Kevin Collier | Ken Dilanian | ) www.cnbc.com time to read: +14 min

A once-robust alliance of federal agencies, tech companies, election officials and researchers that worked together to thwart foreign propaganda and disinformation has fragmented after years of sustained Republican attacks. The most recent setback came when the FBI put an indefinite hold on most briefings to social media companies about Russian, Iranian and Chinese influence campaigns. "We're having some interaction with social media companies," Wray said. "The symbiotic relationship between the government and the social media companies has definitely been fractured." Tech companies are still sharing their findings with each other, a Meta spokesperson told NBC News.

Persons: Christopher Wray, Wray, Sen, Mitt Romney, they're, Mark Warner, Warner, Hillary Clinton's, Barack, CISA, Joe Biden, Donald Trump, Hunter, Mark Zuckerburg, Hunter Biden, didn't, Biden, Nina Jankowicz, Jankowicz, Jen, Jim Jordan, Kara Swisher, we're, Elon Musk, wasn't Organizations: U.S, Capitol, Washington , D.C, GOP, FBI, Force, NBC News, Senate Homeland Security Committee, Justice Department, Committee, Republican, Infrastructure Security Agency, Department of Homeland Security, Microsoft, Senate Intelligence, Kremlin, Internet Research Agency, Facebook, Twitter, National Security Agency, Democrats, New, Digital, Republicans, Homeland Security, Wired, Rep, Tech Locations: Washington ,, Silicon Valley, R, Utah, Russia, Iran, China, U.S, Illinois, CISA, New York, Missouri, Louisiana, Ohio, Israel

China's foreign ministry said on Friday the lender is striving to minimise risk impact and losses after the attack. "We don't often see a bank this large get hit with this disruptive of a ransomware attack," said Allan Liska, a ransomware expert at the cybersecurity firm Recorded Future. TRADES CLEAREDICBC said it had successfully cleared Treasury trades executed on Wednesday and repurchase agreements (repo) financing trades done on Thursday. Some market participants said trades going through ICBC were not settled due to the attack and affected market liquidity. The Treasury market appeared to be functioning normally on Thursday, according to LSEG data.

Persons: Kim Kyung, ICBC, Wang Wenbin, Wang, Lockbit, Allan Liska, Scott Skrym, Michael Gladchun, Loomis Sayles, SIFMA, Urvi, Pete Schroder, Gertrude Chavez, Davide Barbuscia, Carolina Mandl, Paritosh Bansal, Joe Cash, Stephen Coates, Tomasz Janowski Organizations: Commercial Bank of China Ltd, REUTERS, Industrial, Commercial Bank of China, Commercial Bank of China's, U.S . Treasury, ICBC Financial Services, Cybersecurity, Infrastructure Security Agency, Boeing, U.S . Treasury Department, Treasury, Securities, Financial Times, U.S . Securities Industry, Financial Markets Association, Thomson Locations: Beijing, China, U.S, Bengaluru, Washington, Carolina

☆ Israel’s cyber defense chief tells CNN he is concerned Iran could increase severity of its cyberattacks
▼ + stars: | 2023-11-06 | by ( Sean Lyngaas | ) edition.cnn.com time to read: +8 min

So far, suspected Iranian hackers appear to have had minimal impact on their publicly claimed targets in Israel in the last month. But Portnoy said those hackers have been relatively quiet in the latest Israel-Hamas war (Israeli airstrikes have decimated internet infrastructure in Gaza.) “There is a gap between their [cyber] capabilities and their rhetoric,” the official told CNN, referring to Iran-backed hackers. “Even the successful, real cyberattacks are probably not going to be about the actual attack,” John Hultquist, Mandiant’s chief analyst, told CNN. This campaign is “maybe the most sophisticated we have seen from Iran on a technological level,” Sergey Shykevich, threat intelligence group manager at Check Point, told CNN.

Persons: “, ”, Gaby Portnoy, ” Portnoy, Portnoy, –, Christopher Wray, ” Wray, ” Eric Goldstein, CrowdStrike, ” John Hultquist, “ It’s, Solomon, Israel, Adam Meyers, CrowdStrike’s, ” Meyers, Sergey Shykevich Organizations: CNN, Israel National Cyber Directorate, Lebanese, Hezbollah, Palo Alto Networks, Hamas, Infrastructure Security Agency, FBI, Boston Children’s Hospital, ” CNN, Iranian, United Nations, “, Islamic Revolutionary Guard Corps Locations: Iran, Israel, Saudi Arabia, East, Iranian, Syria, Iraq, Tehran, –, Palo, Gaza, Palestine, China, Russia

ATLANTA (AP) — Some Republican lawmakers continued to press Wednesday for changes to protect Georgia's voting system from security weaknesses, but a deputy to Secretary of State Brad Raffensperger accused them of acting in bad faith and promoting lies that Georgia's 2020 election was stolen from Donald Trump. The dispute with some Republicans in the state Senate stems from vulnerabilities in Dominion Voting Systems equipment identified by J. Alex Halderman, an expert witness in a lawsuit challenging the constitutionality of Georgia’s election system. However, they say it's impractical to update all 40,000 electronic voting machines and scanners statewide before the 2024 election cycle begins. Senate Ethics Committee Chairman Max Burns, a Sylvania Republican, said at the end of the hearing he wanted to see changes. Fueling interest in voting changes are Republican Party activists who say that Georgia's 16 electoral votes were stolen from Trump in 2020.

Persons: Brad Raffensperger, Donald Trump, J, Alex Halderman, Halderman, he's, Gabriel Sterling, We’re, Sterling, “, Sen, Brandon Beach, Greg Dolezal, we’re, ” Dolezal, Max Burns, Burns, Raffensperger, Randy Robertson, Rudy Giuliani, Trump, Giuliani, John Eastman, Jenna Ellis, Ray Smith, Robert Cheeley, Ellis, Steve Gooch, Dahlonega —, Sidney Powell Organizations: ATLANTA, Republican, Voting Systems, Cybersecurity, Infrastructure Security Agency, Cumming Republican, Dominion, Sylvania Republican, Rotary Club, Republican Party, Trump Locations: U.S, Brandon, Fulton, Beach, Georgia

A Boeing logo is seen at the 54th International Paris Airshow at Le Bourget Airport near Paris, France, June 18, 2023. The Lockbit threat was no longer on the gang's website as of Wednesday, and it didn't immediately respond to a request for comment. Boeing declined to comment on whether Lockbit was behind the cyber incident it disclosed. It's unclear what data Lockbit may have stolen from the company. "Paying the ransom would simply elicit a pinky promise from LockBit that they will destroy whatever data they obtained," Callow said.

Persons: Benoit Tessier, didn't, Lockbit, Brett Callow, Emsisoft, Callow, Valerie Insinna, Chris Reese, Lisa Shumaker, Jamie Freed Organizations: Boeing, Paris, REUTERS, Rights, Cybersecurity, Infrastructure Security Agency, Global Services, Services, Thomson Locations: Le Bourget, Paris, France

☆ Biden's AI executive order applies to models that 'practically don't exist yet', says Chris Krebs
▼ + stars: | 2023-10-31 | by ( ) www.cnbc.com time to read: 1 min

Share Share Article via Facebook Share Article via Twitter Share Article via LinkedIn Share Article via EmailBiden's AI executive order applies to models that 'practically don't exist yet', says Chris KrebsChris Krebs, Krebs Stamos Group partner and former Cybersecurity and Infrastructure Security Agency director, joins 'Squawk Box' to discuss President Biden's executive order on A.I. regulation, the potential impact on companies, and more.

Persons: Chris Krebs Chris Krebs, Krebs, Biden's Organizations: Krebs Stamos, Infrastructure Security Agency

☆ Boeing assessing Lockbit hacking gang threat of sensitive data leak
▼ + stars: | 2023-10-27 | by ( Zeba Siddiqui | ) www.reuters.com time to read: +2 min

The hacking group posted a countdown clock on its data leak website with a message saying, "Sensitive data was exfiltrated and ready to be published if Boeing do not contact within the deadline!" "For now we will not send lists or samples to protect the company BUT we will not keep it like that until the deadline," the hacking group said. The hacking group typically deploys ransomware on a victim organization's system to lock it up and also steals sensitive data for extortion. Lockbit was the most active global ransomware group last year based on the number of victims it claimed on its data leak blog, according to the U.S. Cybersecurity and Infrastructure Security Agency (CISA). The hacking gang also did not immediately respond to a request for comment sent on an address it mentioned on its data leak site.

Persons: Lindsey Wasson, Lockbit, CISA, Zeba Siddiqui, Leslie Adler Organizations: Boeing KC, Pegasus, U.S . Air Force, REUTERS, Rights, Boeing, Boeing Co, Cybersecurity, Infrastructure Security Agency, Thomson Locations: Everett , Washington , U.S, ”, San Francisco

☆ 6 troubling questions about the Corizon bankruptcy deal
▼ + stars: | 2023-10-26 | by ( Dakin Campbell | Nicole Einbinder | ) www.businessinsider.com time to read: +20 min

The bankruptcy of prison health provider Corizon has faced pressure from senators and a federal regulator in recent weeks. Other troubling questions surrounding the bankruptcy involve payments to insiders, "dishonest" testimony, and a secret data breach. The other company, Tehum, was saddled with most of Corizon's liabilities and, in February, filed for bankruptcy. AdvertisementAdvertisementNine US senators have written to Corizon successor companies Tehum Care Services and YesCare demanding answers about Corizon's efforts to "manipulate bankruptcy law." AdvertisementAdvertisementLefkowitz repeatedly said under oath during a June creditor call that he didn't know who owned Geneva Consulting — the company Corizon paid $5.5 million.

Persons: Corizon, —, Christopher Lopez, David Jones, Elizabeth Freeman, YesCare, Jones, Tehum, Judge Jones, Freeman, Ian Cross, Elizabeth Warren, Bernie Sanders, Cory Booker, Dick Durbin, Lopez, they're, Kevin Eckhardt, Hector Garcia Jr, Hector Garcia, Belen Lowery, Garcia's, Jeff Sholey, Isaac Lefkowitz, Lefkowitz, Sara Tirschwell, Jeffrey Scott King, Ayodeji, Michelle Rice, Jennifer Finger, Sholey, Edward Janger, Janger, he's, didn't, Geneva, Russell Perry, Baker, Hostetler, Tehum's, Tracey Grissom, Grissom, Julia Tutwiler, Roman, Sannikov, CISA, Tehum hadn't, What's, it's Organizations: Service, Tehum Care Services, Justice Department, Corizon, Arizona Department of Corrections, Rehabilitation, Geneva Consulting, Tehum, University of Missouri Health Care, Brooklyn Law School, Geneva, Genesis Healthcare, Department, US, Court, Southern, Southern District of, Baker, FBI, Infrastructure Security Agency, of Health, Human, CISA, HHS, HIPAA, Women Locations: Houston, Texas, YesCare, Reorg, New Mexico, Corizon, Geneva, Southern District, Southern District of Texas, Alabama, Wetumpka , Alabama, Rivers, bitcoin, Tehum

☆ US Supreme Court temporarily blocks order curbing Biden social media contacts
▼ + stars: | 2023-10-13 | by ( Andrew Chung | ) www.reuters.com time to read: +3 min

REUTERS/Jonathan Ernst/File Photo Acquire Licensing RightsOct 13 (Reuters) - The U.S. Supreme Court on Friday maintained a block on restrictions imposed by lower courts on the ability of President Joe Biden's administration to encourage social media companies to remove content deemed misinformation, including about elections and COVID-19. Conservative Justice Samuel Alito temporarily put on hold a preliminary injunction constraining how the White House and certain other federal officials communicate with social media platforms pending the administration's appeal to the Supreme Court. Alito first placed a temporary hold on the injunction pending the justices' review on Sept. 14. The Biden administration has argued that its officials did nothing illegal and had sought to mitigate the hazards of online misinformation, including about the pandemic, by alerting social media companies to content that violated their own policies. Reporting by Andrew Chung in New York; Editing by Will DunhamOur Standards: The Thomson Reuters Trust Principles.

Persons: Joe Biden, Jonathan Ernst, Joe Biden's, Samuel Alito, Alito, Biden, Terry Doughty, Doughty, Donald Trump, Andrew Chung, Will Dunham Organizations: White, REUTERS, U.S, Supreme, Conservative, Facebook, District, Democrat, Republican, FBI, CDC, Cybsecurity, Infrastructure Security Agency, Thomson Locations: Palestine, Israel, Washington , U.S, Missouri, Louisiana, New York

☆ Federal appeals court expands limits on Biden administration communications with social media companies
▼ + stars: | 2023-10-03 | by ( Devan Cole | ) edition.cnn.com time to read: +2 min

Washington CNN —A federal appeals court has expanded the scope of a ruling that limits the Biden administration’s communications with social media companies, saying it now also applies to a top US cybersecurity agency. Similar to the ruling last month, in which the appeals court said the federal government had “likely violated the First Amendment” when it leaned on platforms to moderate some content, the new ruling says CISA violates the Constitution. “CISA used its frequent interactions with social media platforms to push them to adopt more restrictive policies on censoring election-related speech,” the three-judge panel wrote. But the court’s new ruling was only modified to add CISA as an enjoined entity. The judges said they were pausing their new injunction for 10 days, and the Biden administration has the option of asking the Supreme Court to issue a more lasting pause on the modified ruling.

Persons: “, CISA, “ CISA, ”, Biden Organizations: Washington CNN, Biden, 5th Circuit, White, Centers for Disease Control, FBI, Infrastructure Security Agency, Department Locations: Missouri

Arizona’s governor was out of the state for a day this week, prompting false claims that she’d abruptly resigned or vanished entirely. The Democrat, who has been the target of misinformation since taking office this year, was out of state for meetings in Washington for a day, so the state treasurer briefly served as acting governor. Political Cartoons View All 1190 Images“She has now stepped down as Arizona governor, and it’s raising questions,” claimed one Facebook user in a widely shared video posted on Thursday. “Republican State Treasurer Kimberly Yee is currently the Acting Governor,” wrote another user on X, the social media platform formerly known as Twitter on Wednesday. The usually unremarkable handover gained attention when Yee released a statement Wednesday acknowledging she’d be serving as acting governor from that evening through Thursday morning.

Persons: she’d, Katie Hobbs, Hobbs, Joe Biden, ”, Kimberly Yee, “, Christian Slater, Yee, hasn’t, Slater, Alejandro Mayorkas, Sen, John McCain, Adrian Fontes, Kyrsten Sinema, Paul Smith, Leonard, Kris Mayes, Richie Taylor, baselessly, ” Slater Organizations: Arizona, Democrat, “ Republican, Twitter, Democratic, Republican, U.S . Homeland, Tempe Center, Arts, of Regents, U.S, Sen, Infrastructure Security Agency, White House, Drug, Agency, U.S . Department of Agriculture, Kroger Locations: Washington, Arizona, U.S, Flagstaff

☆ US, Japan authorities warn of China-linked hacking group BlackTech
▼ + stars: | 2023-09-28 | by ( Kantaro Komiya | Thomson Reuters | Kantaro Writes About Everything Japan'S Economic Indicators To North Korea'S Missiles To Global Regulation On Ai Companies. His Previous Stories Have Been Published In The Associated Press | ) www.reuters.com time to read: +2 min

REUTERS/Kacper Pempel/Illustration/File Photo Acquire Licensing RightsCompanies Hss Otomotiv Ve Lastik Sanayi Anonim Sirketi FollowTOKYO, Sept 28 (Reuters) - U.S. National Security Agency, Federal Bureau of Investigation and Japanese police jointly warned multinational companies of China-linked hacker group BlackTech in a cybersecurity advisory late on Wednesday. "BlackTech has demonstrated capabilities in modifying router firmware without detection and exploiting routers’ domain-trust relationships to pivot from international subsidiaries to headquarters in Japan and the United States, which are the primary targets," the statement said. BlackTech has been engaging in cyberattacks on governments and tech-sector companies in the United States and East Asia since around 2010, Japan's National Police Agency said in a separate statement. Amid heightening U.S.-China tensions over issues including Taiwan, U.S. security officials are raising the tone of their warnings against China's cyberattack capabilities. FBI chief Chris Wray earlier this month said China "has a bigger hacking program than every other major nation combined".

Persons: Kacper, BlackTech, cyberattacks, Chris Wray, Kantaro Komiya, Michael Perry Organizations: REUTERS, . National Security Agency, Federal Bureau of Investigation, Cybersecurity, Infrastructure Security Agency, Japan's National Police Agency, Chinese Communist Party, U.S, FBI, United Kingdom, Washington Post, Pentagon, Thomson Locations: TOKYO, China, Japan, United States, East Asia, Blacktech, Taiwan, U.S, Australia, Canada, New Zealand, United, South Korea

☆ FBI and White House likely coerced social media platforms into removing posts, appeals court rules
▼ + stars: | 2023-09-11 | by ( Lauren Feiner | ) www.cnbc.com time to read: +3 min

A federal appeals court on Friday limited the scope of a district court ruling that sought to limit communications between government agencies and social media companies, while finding that several agencies likely violated the First Amendment. The ruling will make it easier for several federal agencies to communicate with social media companies like Meta , Google and X, previously known as Twitter, as many do to flag concerns they see on the platforms. At the same time, the appeals court concluded that the White House, Surgeon General's office and Federal Bureau of Investigation likely violated the First Amendment by coercing social media platforms into moderating posts on their sites. The appeals court vacated all but one of ten prohibitions Doughty set out in the initial injunction. The White House, Surgeon General's office, FBI and CDC did not immediately respond to requests for comment.

Persons: Joe Biden, Terry A, Doughty, Donald Trump, That's Organizations: Idalia, White, Meta, Google, Western, Western District of, State Department, Facebook, Washington Post, Federal Bureau of, Centers for Disease Control, Infrastructure Security Agency, National Institute of Allergy, FBI, CDC, Twitter, YouTube Locations: Maui, Hawaii, Washington ,, Missouri, Louisiana, Western District, Western District of Louisiana

WASHINGTON (AP) — The government is worried about the safety of chemical facilities across the country after its power to keep dangerous substances out of the hands of extremists lapsed a month ago. Homeland Security officials say this left gaping holes in the country's national security, and they are calling on Congress to act quickly when it returns this week. The Cybersecurity & Infrastructure Security Agency, which falls under DHS, then determines whether the facility is considered high risk and therefore must develop a security plan. Congress gave the department the authority to begin the chemical security program in 2006, and it went into effect the following year. Homeland Security officials say the program's lapse has left them without a vital security tool.

Persons: Alejandro Mayorkas, ”, Kelly Murray, Sen, Rand Paul, Paul, ” Paul, there's, Murray, she's, reauthorized, they're, Matt Fridley, “ They’re, Scott Jensen Organizations: WASHINGTON, Department of Homeland Security, Chemical, Homeland Security, Homeland, Chemical Security, Infrastructure Security Agency, DHS, Congress, Kentucky Republican, & Infrastructure Security Agency, American Chemistry Council Locations: Virginia, Kentucky

☆ Russian hackers broke into Ukrainian battlefield tech, pillaging data from Android devices: intel agencies
▼ + stars: | 2023-09-01 | by ( Sinéad Baker | ) www.businessinsider.com time to read: +3 min

Russian hackers breached devices Ukraine was using on the battlefield, Western intel agencies said. The hacking campaign targeted Android devices used by the Ukrainian military, they said. They said they discovered malware that can "steal sensitive information" was being used in a campaign targeting Android devices used by the Ukrainian military. The Five Eyes agencies' announcement backs up Ukraine's claim that Russia was hacking its battlefield tech. The Five Eyes agencies did not comment on this claim.

Persons: Sandworm, John Hultquist, SBU, Elon Musk's Organizations: Western intel, Service, Infrastructure Security Agency, NSA, FBI, GRU, South, Armed Forces, Defense Forces, CNN Locations: Ukraine, Western, Ukrainian, Wall, Silicon, UK, Australia, Canada, New Zealand, Russia

By Meg Anderson, vice president and chief information security officer at Principal®This story previously appeared on principal.com. Employment of information security analysts is expected to grow 31% from 2021 to 2031*, outpacing the average for all occupations. There's always room for continued improvement in digital operations, of course, but we can start feeling more optimistic about progress that's been made toward cybersecurity for small businesses. *U.S. Bureau of Labor Statistics, U.S. Department of Labor, Occupational Outlook Handbook, information security analysts, September 2022. © 2023 Principal Financial Services, Inc. Principal®, Principal Financial Group®, and Principal and the logomark design are registered trademarks of Principal Financial Services, Inc., a Principal Financial Group company, in the United States and are trademarks and service marks of Principal Financial Services, Inc., in various countries around the world.

Persons: Meg Anderson, we've, what's, We've, cybersecurity, There's, that's Organizations: Software, Cyber Readiness, CRI, Infrastructure Security Agency, Insider Studios, U.S . Bureau of Labor Statistics, . Department of Labor, Life Insurance, Financial Services, Inc, Financial Group Locations: I'm, cyberattacks, Des Moines, United States

☆ Former U.S. Cyber Director Inglis Joins Advisory Firm Hakluyt
▼ + stars: | 2023-08-11 | by ( James Rundle | ) www.wsj.com time to read: +3 min

Chris Inglis, the former U.S. national cyber director who left the White House in February, has joined London-based corporate advisory firm Hakluyt & Co.Inglis, a veteran of the U.S. Air Force and the National Security Agency, was the first person to serve as national cyber director. His role in the White House was relatively short-lived. After being confirmed by the Senate in June 2021, he left the job in February 2023, a month before the release of his former office’s flagship National Cybersecurity Strategy. Newsletter Sign-up WSJ Pro Cybersecurity Cybersecurity news, analysis and insights from WSJ's global team of reporters and editors. In addition to Hakluyt, Inglis has also rejoined Paladin Venture Capital, an investment company where he was employed before his most recent stint in the federal government, as a senior strategic adviser.

Persons: Chris Inglis, Hakluyt, Inglis, ”, Cybersecurity, Varun Chandra, Chandra, ChatGPT, it’s, ” Inglis, James Rundle Organizations: U.S, White, Hakluyt & Co, U.S . Air Force, National Security Agency, Senate, Cybersecurity, NSA, U.S . Securities, Exchange Commission, Infrastructure Security Agency, Paladin Venture Capital, Hakluyt Locations: London, cyberattacks, james.rundle

☆ Microsoft's role in data breach part of US cyber inquiry -Bloomberg News
▼ + stars: | 2023-08-11 | by ( ) www.reuters.com time to read: +1 min

A Microsoft logo is seen in Los Angeles, California U.S. November 7, 2017. REUTERS/Lucy Nicholson/File PhotoCompanies Microsoft Corp FollowAug 10 (Reuters) - A U.S. cybersecurity advisory panel will investigate risks in cloud computing that will also include Microsoft Corp's (MSFT.O) role in the recent breach of government department email systems by suspected Chinese hackers, Bloomberg News reported on Thursday. That access was used to spy on the communications of U.S. Commerce Secretary Gina Raimondo and senior State Department diplomats. The U.S. House of Representatives Oversight Committee last week said it was opening an investigation into China's suspected involvement in recent breaches of Commerce and State department email systems. Reporting by Gokul Pisharody in Bengaluru; Editing by Himani Sarkar and Jamie FreedOur Standards: The Thomson Reuters Trust Principles.

Persons: Lucy Nicholson, Ron Wyden, Gina Raimondo, CISA, Gokul, Himani Sarkar, Jamie Freed Organizations: Microsoft, Los Angeles , California U.S, REUTERS, Bloomberg, Federal Trade Commission, Infrastructure Security Agency, Justice Department, U.S . Commerce, State Department, U.S . House, Commerce, Thomson Locations: Los Angeles , California, U.S, Oregon, Bengaluru

☆ US cyber body to review cloud computing safety, Microsoft breach
▼ + stars: | 2023-08-11 | by ( ) www.reuters.com time to read: +1 min

A man types into a keyboard during the Def Con hacker convention in Las Vegas, Nevada, U.S. on July 29, 2017. REUTERS/Steve Marcus/File PhotoWASHINGTON, Aug 11 (Reuters) - A U.S. cyber safety body will review issues relating to cloud-based identity and authentication infrastructure that will include an assessment of a recent Microsoft (MSFT.O) breach that led to the theft of emails from U.S. government agencies, the Department of Homeland Security (DHS) said on Friday. The review by the Cyber Safety Review Board will look at the malicious targeting of cloud computing environments, the DHS said in a statement. Senator Ron Wyden in July asked the Federal Trade Commission, the Cybersecurity and Infrastructure Security Agency and the Justice Department to "take action" against Microsoft following the hack. The Cyber Safety Review Board's review will provide recommendations to help organizations protect against malicious access to cloud-based accounts , DHS said.

Persons: Steve Marcus, Alejandro Mayorkas, Ron Wyden, Jasper Ward, Ismail Shakil, Jonathan Oatis Organizations: Def Con, REUTERS, Microsoft, Department of Homeland Security, DHS, Federal Trade Commission, Infrastructure Security Agency, Justice Department, Thomson Locations: Las Vegas , Nevada, U.S, Washington, Ottawa

[1/2] A sign indicates the direction to the offices of Progress Software in Burlington, Massachusetts, U.S., July 26, 2023. But more than two months after the breach was first disclosed by Massachusetts-based Progress Software, the parade of victims has scarcely slowed. The tallies show that nearly 40 million people have been affected so far by the hack of Progress' MOVEit Transfer file management program. Now the digital extortionists involved, a group named "cl0p", have become increasingly aggressive about thrusting their data into the public domain. MOVEit is used by organizations to ship large amounts of often sensitive data: pension information, social security numbers, medical records, billing data and the like.

Persons: Brian Snyder, Marc Bleicher, cl0p, Huntress Security's John Hammond, Christopher Budd, Sophos, Eric Goldstein, Nathan Little, Emsisoft, Bert Kondruss, Rowe Price, Maximus, Alexander Urbelis, Crowell, Goldstein, didn't, Surefire's, Raphael Satter, Zeba Siddiqui, Chris Sanders, Grant McCool Organizations: Progress Software, REUTERS, FRANCISCO, Reuters, Software, Insurance, of America, Cybersecurity, Infrastructure Security Agency, Tetra Defense, WHO, Pension, California Public Employees, Moring, U.S ., Thomson Locations: Burlington , Massachusetts, U.S, WASHINGTON, American, Massachusetts, York, New York, Louisiana, California, New York City, Oregon

☆ White House to bolster cybersecurity training for K-12 schools, with help from the FCC, Amazon Web Services and more
▼ + stars: | 2023-08-08 | by ( Lauren Feiner | ) www.cnbc.com time to read: +3 min

On Tuesday, the White House convened school administrators, educators and companies to explore how best to protect schools and students' information from cyberattacks. At least eight K-12 school districts across the country experienced significant cyberattacks in the last academic year, the White House said, leading to disruptions in learning. The White House announced a series of actions from federal agencies and commitments from companies to help school districts secure their digital information. Amazon Web Services committed $20 million to fund a cyber grant program for school districts and state departments of education. It will also conduct free security reviews for U.S. education technology companies that provide "mission-critical applications" for K-12 schools.

Persons: Biden, Miguel Cardona, Cardona, Cloudflare, PowerSchool Organizations: White, Government, Office, White House, Federal Communications Commission, Universal Service Fund, Infrastructure Security Agency, Federal Bureau of Investigation, National Guard Bureau, CNBC, Web Services, Google Locations: cyberattacks, U.S

CNN —Special counsel Jack Smith unveiled his case alleging that former President Donald Trump broke several laws in his attempts to overturn the 2020 election, with a grand jury indictment returned Tuesday that illustrated the depth and breadth of the federal criminal investigation. Trump, who has derided Smith’s case as a politically motivated “fake indictment,” has been summoned to appear before a magistrate judge on Thursday. Prosecutors put forward several examples of Trump being told by his aides that fraud claims he was promoting were false. The new indictment recounts a conversation between Trump and Meadows, during which Meadows allegedly told Trump that he had observed Georgia election officials were “conducting themselves in an exemplary fashion,” while assuring Trump they would find fraud if it existed. Hours later, Trump tweeted that the election officials were “terrible people” who were trying to cover-up evidence of fraud.

Persons: Jack Smith, Donald Trump, Prosecutors, Trump “, Trump, ”, it’s, ” Trump, Wisconsin –, “, Mike Pence, Department of Homeland Security’s, –, Kenneth Chesebro, Rudy Guiliani –, memorializing, they’re, Pence, Pat Cipollone, Trump’s, Giuliani, ” Pence, Pat Philbin, Philbin, Mark Meadows, Meadows, Tanya Chutkan –, Obama, Smith, he’ll Organizations: CNN, Trump, ”, White, Justice, Republican, Justice Department, Department of Homeland, Infrastructure Security Agency, Prosecutors, AZ, Capitol, CNN Prosecutors, “, Manhattan Locations: United States, Wisconsin, Pennsylvania, Michigan, Detroit, Arizona, Cipollone, Trump, Meadows, Georgia, DC, Alabama

☆ Microsoft must be held responsible for China's U.S. government email hack, Senator Wyden demands
▼ + stars: | 2023-07-27 | by ( Rohan Goswami | In Rohangoswamicnbc | ) www.cnbc.com time to read: +4 min

Chinese hackers accessed the Microsoft-powered email accounts of top China envoys, Commerce Secretary Gina Raimondo, and Secretary of State Antony Blinken. Wyden asked that the Justice Department examine whether Microsoft had violated federal law through its negligence; that CISA examine whether Microsoft violated best practices for securing the highly sensitive "skeleton key;" and that the Federal Trade Commission examine whether Microsoft violated federal privacy statutes. Both the State Department and the Commerce Department were targeted by Chinese hackers. Wyden noted it wasn't the first time that a foreign government had hacked government agencies by exploiting Microsoft vulnerabilities. Both Microsoft and federal officials have disclosed relatively little about the hack, though Microsoft has disseminated additional information and made concessions to customers to mitigate the impact of the exploitation.

Persons: Sen, Ron Wyden, Joe Biden's, Gina Raimondo, Antony Blinken, Wyden, Merrick Garland, Lina Khan, Jen Organizations: Democratic, Finance, Justice Department, Microsoft, Federal Trade Commission, Infrastructure Security Agency, Google, FTC, State Department, Commerce Department, Department's Locations: Washington, China

☆ US Senator Wyden asks FTC, CISA, DOJ to 'take action' against Microsoft following hack
▼ + stars: | 2023-07-27 | by ( ) www.reuters.com time to read: +1 min

[1/2] Senator Ron Wyden (D-OR) speaks during the Senate Finance Committee hearing on the nomination of Chris Magnus to be the next U.S. Customs and Border Protection commissioner, in the Dirksen Senate Office Building on Capitol Hill in Washington, DC, U.S., October 19, 2021. In a letter released Thursday, Wyden said that "even with the limited details that have been made public so far, Microsoft bears significant responsibility for this new incident." The FTC, the Justice Department, and the Cybersecurity Agency - known as CISA - did not immediately respond to request seeking comment. Microsoft did not immediately return a request for comment. Reporting by Raphael Satter; Editing by Chizu NomiyamaOur Standards: The Thomson Reuters Trust Principles.

Persons: Ron Wyden, Chris Magnus, Mandel Ngan, Read, Wyden, Raphael Satter, Chizu Organizations: Senate, U.S . Customs, Border Protection, Federal Trade Commission, Infrastructure Security Agency, Department of Justice, Microsoft, FTC, Justice Department, Cybersecurity Agency, Thomson Locations: U.S, Dirksen, Washington , DC, Oregon, China

Search resuls for: "Infrastructure Security"

25 mentions found