Security

0 Comments
An American mortgage lender has shelled out $1.5m to resolve allegations that it violated the New York Department of Financial Services (NYDFS) Cybersecurity Regulation.  Residential Mortgage Services, Inc. (RMS), which is headquartered in South Portland, Maine, was accused of failing to report a data breach that occurred in 2019.  The breach was uncovered during an investigation of
0 Comments
The United States Justice Department has warned that cyber-criminals are impersonating state workforce agencies (SWAs) to steal Americans’ personal data. In a press release issued March 5, the department said it had received reports that bad actors are creating fake websites that mimic sites genuinely belonging to SWAs.  “The fake websites are designed to trick consumers into
0 Comments
by Paul Ducklin Remember the last big jailbreak news? It was nearly a year ago, back in May 2020, when well-known Apple jailbreaking crew unc0ver released version 5 of their jailbreak toolkit, just a week after Apple came out with iOS 13.5. The word jailbreak, at least in the IT world, is a generic term
0 Comments
Elite cybercrime forum Maza aka MFclub has been taken over by hackers, according to new research by risk intelligence company Flashpoint. The Russian-language forum, which was originally known as Mazafaka, has served thousands of cyber-criminals since its launch in 2003.  “Little is known at this time about the attackers who successfully compromised Maza,” wrote Flashpoint researchers. But
0 Comments
by Harriet Stone TikTok is a video-sharing social media platform, owned by Chinese company ByteDance, where users make and share short-form videos that range from three seconds to one minute long. It’s the latest app to take its turn on the social media throne, following MySpace in 2005, Facebook in 2008, and most recently Instagram
0 Comments
A Swedish businessman has admitted conning thousands of victims out of millions of dollars with a reversed pension cryptocurrency investment scam.  Roger Nils-Jonas Karlsson pleaded guilty today to securities fraud, wire fraud, and money laundering charges that he defrauded 3,575 victims of more than $16m. Karlsson and his now defunct company, Eastern Metal Securities (EMS), were charged in
0 Comments
Two teenage girls who went missing from the same North Carolina county used school-issued laptops to communicate with their alleged abductors.  Savannah Grace Childress vanished on February 11 from her home on Canaan Church Road in Denton. The 14-year-old was found alive ten days later in Arkansas.  Law enforcement officers investigating Childress’ disappearance discovered that the teen had
0 Comments
A federal judge in Washington state has dismissed a cyber-squatting claim brought by the Washington Chapter of The Satanic Temple. The United Federation of Churches LLC, doing business as The Satanic Temple, filed a lawsuit against a group of former Temple members who it claimed erased the contents of the Temple’s social media accounts and replaced it
0 Comments
United Airlines Inc. has agreed to pay $49m to resolve criminal charges and civil claims that it was defrauding the United States Postal Service. The world’s third largest airline entered into International Commercial Air (ICAIR) contracts to transport mail internationally on behalf of the postal service. Under the contracts, United was entitled to full payment only if accurate
0 Comments
by Paul Ducklin If you’re active on social media, you probably know that copyright infringement is a big deal online, and that even accidentally including or referring to somebody else’s material can leave you facing a copyright complaint notice sent by the social media platform involved. If you don’t sort out the complaint, you could
0 Comments
The Federal Bureau of Investigation and Michigan State Police are investigating a cyber-attack on a Michigan school district. District administrators at Saginaw Township Community Schools began experiencing IT issues on Sunday following what is believed to have been a ransomware attack on the district’s computer network.  Investigators are in contact with the cyber-criminals behind the attack. It
0 Comments
French multinational information technology services and consulting company Atos has completed the acquisition of two cybersecurity companies.  On February 24, the self-styled decarbonization services and products pioneer announced the successful acquisition of Motiv ICT Security. Founded in 1998, Motiv is the largest independent Managed Security Services (MSS) provider in the Netherlands. In a statement released Wednesday, Atos said
0 Comments
New research by cybersecurity company Kaspersky has found that Russia, Brazil, and the United States of America were the countries most affected by stalkerware last year.  A new report, “The State of Stalkerware 2020,” that was released today found that 53,870 Kaspersky users were affected globally by malicious surveillance software in 2020. Russia had the most affected users
0 Comments
Six school officials in Alabama have been indicted over a scheme to fraudulently obtain millions of dollars in state education funding by pretending to enroll private students into virtual schools. Federal prosecutors say educators in Athens City Schools and Limestone County Schools stole the identities of hundreds of private students and falsified enrollment records to
0 Comments
The United States Senate’s select committee on intelligence met yesterday to hear evidence from tech executives regarding the historic hack on Texas-based company SolarWinds.  Government agencies issued emergency directives in December after cybersecurity company FireEye detected a supply-chain attack trojanizing SolarWinds’ Orion business software updates to distribute malware. Using SolarWinds and Microsoft programs, hackers believed to have been working for Russia attacked
0 Comments
The former comptroller of a Louisiana community college has been sent to prison for wire fraud after abusing her network access to issue fraudulent refunds. Carol Bates admitted committing wire fraud from 2013 to 2016 while working at Bossier Parish Community College (BPCC). The 50-year-old Shreveport resident conspired with her sister Audrey Williams and nine
0 Comments
A vengeful former staff member of a San Jose sports stadium concessionaire has admitted carrying out a costly cyber-attack against his ex-employer after losing his job.  Salvatore A. La Rosa worked for Spectra Food Services and Hospitality from Valentine’s Day 2015 until his termination on January 6, 2020. Spectra was the concessions contractor for California’s Earthquakes Stadium, home of
0 Comments
The number of month-on-month healthcare data breaches of 500 or more records reported in the United States was halved in January, according to new research by the HIPAA Journal. While December 2020 saw 62 such incidents recorded, only 32 were recorded in January 2021. The 32 breaches occurred across 18 states. Florida, where six of the
0 Comments
The United States has arrested six alleged members of an international fraud and money-laundering ring that deployed spoofing, catfishing, and COVID-19 relief scams to con victims out of $55m. The defendants are accused of creating fake identities to trick companies, the Small Business Administration (SBA), and old folks searching for romance online into wiring funds to bank
0 Comments
Kia Motors America has said a recent computer network outage problem was not caused by a ransomware attack. IT outages began on Saturday, impacting both Kia and affiliated automaker Hyundai Motor America, both of which are owned by the South Korea–based Hyundai Motor Group. The issues experienced by Hyundai were not as severe as those