DIRS.INFO The most relevant business & tech news

☆ Israel’s cyber defense chief tells CNN he is concerned Iran could increase severity of its cyberattacks
▼ + stars: | 2023-11-06 | by ( Sean Lyngaas | ) edition.cnn.com time to read: +8 min

So far, suspected Iranian hackers appear to have had minimal impact on their publicly claimed targets in Israel in the last month. But Portnoy said those hackers have been relatively quiet in the latest Israel-Hamas war (Israeli airstrikes have decimated internet infrastructure in Gaza.) “There is a gap between their [cyber] capabilities and their rhetoric,” the official told CNN, referring to Iran-backed hackers. “Even the successful, real cyberattacks are probably not going to be about the actual attack,” John Hultquist, Mandiant’s chief analyst, told CNN. This campaign is “maybe the most sophisticated we have seen from Iran on a technological level,” Sergey Shykevich, threat intelligence group manager at Check Point, told CNN.

Persons: “, ”, Gaby Portnoy, ” Portnoy, Portnoy, –, Christopher Wray, ” Wray, ” Eric Goldstein, CrowdStrike, ” John Hultquist, “ It’s, Solomon, Israel, Adam Meyers, CrowdStrike’s, ” Meyers, Sergey Shykevich Organizations: CNN, Israel National Cyber Directorate, Lebanese, Hezbollah, Palo Alto Networks, Hamas, Infrastructure Security Agency, FBI, Boston Children’s Hospital, ” CNN, Iranian, United Nations, “, Islamic Revolutionary Guard Corps Locations: Iran, Israel, Saudi Arabia, East, Iranian, Syria, Iraq, Tehran, –, Palo, Gaza, Palestine, China, Russia

[1/2] A sign indicates the direction to the offices of Progress Software in Burlington, Massachusetts, U.S., July 26, 2023. But more than two months after the breach was first disclosed by Massachusetts-based Progress Software, the parade of victims has scarcely slowed. The tallies show that nearly 40 million people have been affected so far by the hack of Progress' MOVEit Transfer file management program. Now the digital extortionists involved, a group named "cl0p", have become increasingly aggressive about thrusting their data into the public domain. MOVEit is used by organizations to ship large amounts of often sensitive data: pension information, social security numbers, medical records, billing data and the like.

Persons: Brian Snyder, Marc Bleicher, cl0p, Huntress Security's John Hammond, Christopher Budd, Sophos, Eric Goldstein, Nathan Little, Emsisoft, Bert Kondruss, Rowe Price, Maximus, Alexander Urbelis, Crowell, Goldstein, didn't, Surefire's, Raphael Satter, Zeba Siddiqui, Chris Sanders, Grant McCool Organizations: Progress Software, REUTERS, FRANCISCO, Reuters, Software, Insurance, of America, Cybersecurity, Infrastructure Security Agency, Tetra Defense, WHO, Pension, California Public Employees, Moring, U.S ., Thomson Locations: Burlington , Massachusetts, U.S, WASHINGTON, American, Massachusetts, York, New York, Louisiana, California, New York City, Oregon

CNN —China-based hackers breached the email account of US Ambassador to China Nicholas Burns as part of a recent targeted intelligence-gathering campaign, three US officials familiar with the matter told CNN. Blinken raised the issue of the hacking incident in a meeting with top Chinese diplomat Wang Yi last week, a senior State Department official said. A State Department analyst in mid-June noticed unusual cyber activity on the department’s computer systems and alerted Microsoft to the issue, according to multiple sources. Eric Goldstein, a senior CISA official, told CNN he fielded calls about the hack while on a weekend getaway out of Washington with his children. CISA’s engineers used a simulation lab to test different theories of how the hackers might have gotten into the State Department email accounts, he told CNN.

Persons: China Nicholas Burns, Daniel Kritenbrink, Antony Blinken, Gina Raimondo, Biden, Blinken, Wang Yi, Burns, ’, ” Blinken, Washington, Eric Goldstein, ”, Goldstein Organizations: CNN, State, Wall Street, FBI, State Department, Microsoft, Infrastructure Security Agency Locations: China, East Asia, Beijing, Blinken’s, United, Jakarta, Indonesia, Washington

WASHINGTON, July 19 (Reuters) - Microsoft Corp (MSFT.O) is expanding its suite of free security tools for customers, the software company said on Wednesday, following criticism that it was charging clients to protect themselves against Microsoft's mistakes. Microsoft's previous practice of charging for advanced versions of those tools has come under widespread criticism, especially following the recently disclosed hack at the U.S. State and Commerce Departments. That hack - which Microsoft later acknowledged was down to a breach and coding flaws - was only discovered because one of the victims spotted an anomaly while reviewing their digital logs. In a statement released alongside Microsoft's blog post, Cybersecurity and Infrastructure Security Agency official Eric Goldstein said that "everyone wins" when security tools are provided free of charge. Charging for those tools "is a recipe for inadequate visibility into investigating cybersecurity incidents," Goldstein said.

Persons: Eric Goldstein, Goldstein, Raphael Satter, Josie Kao Organizations: Microsoft Corp, U.S, Microsoft, U.S . State, Commerce, Infrastructure Security Agency, Thomson

☆ US government agencies hit in global hacking spree
▼ + stars: | 2023-06-15 | by ( ) www.reuters.com time to read: +2 min

June 15 (Reuters) - The U.S. government has been hit in a global hacking campaign that exploited a vulnerability in widely used software but does not expect it to have significant impact, the nation's cyber watchdog agency said on Thursday. CISA did not identify the agencies that were hit or say exactly how they had been affected. The FBI and National Security Agency also did not immediately respond to emails seeking details on the breaches. MOVEit, made by Progress Software Corp (PRGS.O), is typically used by organizations to transfer files between their partners or customers. Neither Cl0p nor Progress immediately responded to requests for comment.

Persons: Eric Goldstein, cybersecurity, CISA, Jen, MOVEit, John Hammond, Huntress, Raphael Satter, Kanishka Singh, Zeba Siddiqui, Tanna, Chandi Shah, Jonathan Oatis, Angus MacSwan, Bill Berkrot Organizations: U.S, Cybersecurity, Infrastructure Security Agency, CNN, FBI, National Security Agency, MSNBC, Progress Software Corp, Progress, CITY, Thomson Locations: U.S, United States

☆ U.S. government says several agencies hacked as part of broader cyberattack
▼ + stars: | 2023-06-15 | by ( Kevin Collier | ) www.cnbc.com time to read: +2 min

Cybersecurity and Infrastructure Security Agency (CISA) Director Jen Easterly testifies before a House Homeland Security Subcommittee, at the Rayburn House Office Building on April 28, 2022 in Washington, DC. Several U.S. agencies have been hacked as part of a broader cyberattack that has hit dozens of companies and organizations in recent weeks through a previously unknown vulnerability in popular file sharing software. "CISA is providing support to several federal agencies that have experienced intrusions," he said. Charles Carmakal, chief technology officer of Mandiant, a cybersecurity company owned by Google whose clients include government agencies, said that he was aware of some data theft from federal agencies through the MOVEIt hacks. Wendi Whitmore, who leads threat analysis for the cybersecurity company Palo Alto Networks, said that CL0P's campaign of hacking victims through MOVEIt was incredibly widespread.

Persons: Jen, Eric Goldstein, Charles Carmakal, Andrea Mitchell, Brett Callow, Wendi Whitmore, MOVEIt Organizations: Infrastructure Security Agency, Homeland Security, U.S, Google, NBC News, FBI, National Intelligence, National Security Council, Palo Alto Networks Locations: Rayburn, Washington ,, MOVEIt

☆ US government hit in global cyberattack
▼ + stars: | 2023-06-15 | by ( Sean Lyngaas | ) edition.cnn.com time to read: +3 min

CNN —“Several” US federal government agencies have been hit in a global cyberattack that exploits a vulnerability in widely used software. A CISA spokesperson had no comment when CNN asked who carried out the hack of federal agencies and how many have been affected. But the news adds to a growing tally of victims of a sprawling hacking campaign that began two weeks ago and has hit major US universities and state governments. As of Thursday morning, the dark website did not list any US federal agencies. Progress, the US firm that owns the MOVEit software, has also urged victims to update their software packages and has issued security advice.

Persons: Eric Goldstein, cybersecurity, “, – Organizations: CNN, Infrastructure Security Agency, Johns Hopkins University, University of Georgia, –, BBC, British Airways Locations: Russian, Baltimore, Georgia’s, Minnesota, Illinois

☆ Clop: Russian-speaking cyber gang claims credit for hack of BBC and British Airways employee data
▼ + stars: | 2023-06-07 | by ( Sean Lyngaas | ) edition.cnn.com time to read: +3 min

CNN —A group of Russian-speaking cyber criminals has claimed credit for a sweeping hack that has compromised employee data at the BBC and British Airways and left US and UK cybersecurity officials scrambling to respond. The compromise of employee data at the BBC and British Airways came via a breach of a human resources firm, Zellis, that both organizations use. Numerous US state government agencies use the MOVEit software, but it’s unclear how many agencies, if any, have been compromised. The US Cybersecurity and Infrastructure Security Agency has ordered all federal civilian agencies to update the MOVEit software in light of the hack. Progress, the US firm that owns the MoveIT software, has also urged victims to update their software packages and has issued security advice.

Persons: ” They’ve, —, CISA, Eric Goldstein, Charles Carmakal, ”, Allan Liska Organizations: CNN, BBC, British Airways, Infrastructure Security Agency, Federal Bureau of Investigation, Progress Software, FBI, Mandiant Consulting, Google, LinkedIn Locations: Canada

☆ 1.000 de companii afectate de atacul cibernetic al hackerilor în SUA; În Suedia, casele a 800 de supermarketuri au paralizat
▼ + stars: | 2021-07-04 | by ( ) www.jurnal.md time to read: +3 min

Prima consecinţă a acestui atac cibernetic a fost aceea că un mare lanţ de supermarketuri din Suedia a trebuit să închidă sâmbătă peste 800 de magazine, casele sale fiind paralizate de atac. Conform estimării firmei de securitate IT Huntress Labs, "peste 1.000 de companii" au fost afectate de acest atac ransomware. Specialiştii americani în securitate IT suspectează că în spatele acestui atac cibernetic s-ar afla gruparea de hackeri ruşi REvil, informează Reuters. Preşedintele Biden, care a ordonat sâmbătă o anchetă, a afirmat că "primul gând a fost că nu a fost vorba de guvernul rus, dar încă nu suntem siguri". Agenţia americană pentru securitate cibernetică şi securitate a infrastructurii (CISA) "monitorizează îndeaproape situaţia", potrivit unui oficial al instituţiei, Eric Goldstein.

Persons: Reuters, Mulţi, Joe Biden, Vladimir Putin . Preşedintele Biden, Eric Goldstein, Alfred Saikali, Hardy, Bacon Organizations: Kaseya Locations: SUA, Suedia, Miami, Statele Unite, Rusia

Search resuls for: "Eric Goldstein"

9 mentions found