Tag: United states

Microsoft Expands Free Logging Capabilities for all U.S. Federal Agencies
News

Microsoft Expands Free Logging Capabilities for all U.S. Federal Agencies

More than six months after it was revealed that a China-linked cyber espionage campaign was targeting two dozen organizations, Microsoft has extended free logging capabilities to all U.S. federal agencies using Microsoft Purview Audit, regardless of license tier. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) stated that Microsoft "will automatically enable the logs in customer accounts and increase the default log retention period from 90 days to 180 days." Furthermore, this data will offer enhanced telemetry, aiding numerous federal agencies in fulfilling logging prerequisites as mandated by the Office of Management and Budget Memorandum M-21-31. In July 2023, Microsoft reported that an activity group named Storm-0558, originating from China, unlawfully infil...
U.S. Sanctions 6 Iranian Officials for Critical Infrastructure Cyber Attacks
News

U.S. Sanctions 6 Iranian Officials for Critical Infrastructure Cyber Attacks

Six Iranian intelligence service officials were sanctioned by the Office of Foreign Assets Control (OFAC) of the U.S. Treasury Department for hacking vital infrastructure facilities in the United States and other nations. Members of the Iranian Islamic Revolutionary Guard Corps Cyber-Electronic Command (IRGC-CEC) include Hamid Reza Lashgarian, Mahdi Lashgarian, Hamid Homayunfal, Milad Mansuri, Mohammad Bagher Shirinkar, and Reza Mohammad Amin Saberian. Reza Lashgarian is a commander in the IRGC-Quds Force and the chairman of the IRGC-CEC. He is said to have taken part in several intelligence and read more U.S. Sanctions 6 Iranian Officials for Critical Infrastructure Cyber Attacks. Get up to date on the latest cybersecurity news and enhance your knowledge of cybersecurity with ou...
X adds passkeys support for iOS users in the United States
News

X adds passkeys support for iOS users in the United States

Passkeys can now be used by iOS users in the US to access their accounts, according to a recent announcement from X, formerly Twitter. The passkeys, which are associated with the iOS device they are generated on, will greatly lower the likelihood of breaches by thwarting phishing attempts and preventing unauthorized access. Because they will eliminate the need to learn complicated passwords, they will also improve security and user experience. An online credential linked to your account is a passkey. Your private passkey automatically authenticates your account using the server's public passkey, enabling you to log in without having to write in your username and password read more X adds passkeys support for iOS users in the United States. Get up to date on the latest cybersecuri...
US seizes Sinbad crypto mixer used by North Korean Lazarus hackers
News

US seizes Sinbad crypto mixer used by North Korean Lazarus hackers

The cryptocurrency mixing service Sinbad has been sanctioned by the U.S. Department of Treasury due to its use by the North Korean hacking group Lazarus as a means of money laundering. A cryptocurrency mixer is a server that lets users deposit cryptocurrency. To help prevent precise tracking, the cryptocurrency is mixed and sent to numerous wallet addresses. After the cryptocurrency is "mixed," the mixing service transfers it to a different wallet address that belongs to the customer, taking a commission from the deposited amount. Today, Sinbad.io (Sinbad) was sanctioned by the Treasury's Office of Foreign Assets Control (OFAC) due to allegations that North Korean hackers read more US seizes Sinbad crypto mixer used by North Korean Lazarus hackers. Get up to date on the lates...
U.S., U.K., and Global Partners Release Secure AI System Development Guidelines
News

U.S., U.K., and Global Partners Release Secure AI System Development Guidelines

The United Kingdom and the United States, together with international partners from 16 other countries, have issued new guidelines for the development of secure artificial intelligence (AI) systems. "The approach prioritizes ownership of security outcomes for customers, embraces radical transparency and accountability, and establishes organizational structures where secure design is a top priority," according to the United States Cybersecurity and Infrastructure Security Agency (CISA). The National Cyber Security Centre (NCSC) added that the goal is to increase AI cyber security levels and help ensure that the technology is designed, developed read more U.S. U.K. and Global Partners Release Secure AI System Development Guidelines. Get up to date on the latest cybersecurity news a...
Welltok data breach exposes data of 8.5 million US patients
News

Welltok data breach exposes data of 8.5 million US patients

The file transfer program that the company uses was compromised in a data theft attack, and as a result, Welltok, a provider of software for healthcare organizations, is alerting customers to the possibility that approximately 8.5 million patients' personal information was compromised. Welltok supports healthcare needs like medication adherence and pandemic response in addition to working with health service providers across the United States to maintain online wellness programs, hold databases containing personal patient data, and generate predictive analytics. The Clop ransomware group compromised thousands of organizations globally earlier this year by taking advantage of a zero-day vulnerability in the MOVEit software read more Welltok data breach exposes data of 8.5 million US ...
U.S. Takes Down IPStorm Botnet Russian-Moldovan Mastermind Pleads Guilty
News

U.S. Takes Down IPStorm Botnet Russian-Moldovan Mastermind Pleads Guilty

On Tuesday, after the Russian and Moldovan nationals responsible for the operation entered a guilty plea, the US government declared that the IPStorm botnet proxy network and its supporting infrastructure had been taken down. "The botnet infrastructure had infected Windows systems then further expanded to infect Linux, Mac, and Android devices, victimizing computers and other electronic devices around the world, including in Asia, Europe, North America and South America," the Department of Justice (DoJ) stated in a press announcement. Sergei Makinin may spend up to 30 years in prison for creating and distributing the malicious software that thousands of internet-connected devices were infected read more U.S. Takes Down IPStorm Botnet Russian-Moldovan Mastermind Pleads Guilty. Get...
U.S. Treasury Targets Russian Money Launderer in Cybercrime Crackdown
News

U.S. Treasury Targets Russian Money Launderer in Cybercrime Crackdown

A Russian lady who participated in the laundering of virtual currency for the nation's elites and cybercrime groups, such as the Ryuk ransomware organization, has been sanctioned by the U.S. Department of the Treasury. According to the department, Ekaterina Zhdanova is suspected of facilitating significant cross-border transactions to help Russian citizens avoid international sanctions and obtain access to Western financial markets. The treasury department stated last week that Zhdanova uses organizations that are exempt from Anti-Money Laundering/Combatting the Financing of Terrorism (AML/CFT) regulations, such as the Russian cryptocurrency exchange Garantex Europe OU (Garantex), which has been designated by OFAC. Zhdanova uses a variety of value transfer techniques to transfer ...
Cybercriminals Using EvilProxy Phishing Kit to Target Senior Executives in U.S. Firms
News

Cybercriminals Using EvilProxy Phishing Kit to Target Senior Executives in U.S. Firms

A recent phishing effort that targets senior executives working for American companies uses the well-known adversary-in-the-middle (AiTM) phishing toolkit EvilProxy to carry out account takeover and credential harvesting assaults. Menlo Security reported that the activity began in July 2023, primarily mentioning the manufacturing, insurance, property management, and real estate industries. According to a report last week by security researcher Ravisankar Ramprasad, "the threat actors used an open redirection vulnerability on the job search platform 'indeed.com,' rerouting victims to malicious phishing pages pretending to be Microsoft read more Cybercriminals Using EvilProxy Phishing Kit to Target Senior Executives in U.S. Firms. Stay informed with the best cybersecurity news and ...
Microsoft breach led to the theft of 60k US State Dept emails
News

Microsoft breach led to the theft of 60k US State Dept emails

Tens of thousands of emails were stolen from U.S. State Department accounts by Chinese hackers in May after they broke into Microsoft's cloud-based Exchange email system. U.S. State Department officials said that the attackers acquired at least 60,000 emails from Outlook accounts belonging to State Department employees stationed in East Asia, the Pacific, and Europe during a recent Senate staff briefing, as first reported by Reuters. The hackers also succeeded in getting a list of every email address used by the department. The compromised State Department staff spent much of their time working on Indo-Pacific diplomatic initiatives. In a statement, Senator Eric Schmitt stated, "We need to harden our defenses against these kinds of cyberattacks and intrusions in the future read m...