2-factor authentication (2FA) provides essential protection for your online accounts. Without it, you might wake up one day to find your accounts hacked and your money stolen. In this post, I’ll explain what 2FA is and why you need it, before pointing out some of its limitations. Let’s dive in! What is 2FA? 2FA adds […]
Why 2FA is Important in 2023 Read More »
The fallout from ransomware gang Cl0p’s massive, worldwide attack continues to grow. Police departments, state and federal agencies, and numerous companies are among the known victims. Recap Cl0p stole data from hundreds of organizations by exploiting a vulnerability in popular file transfer software MOVEit at the end of May. The cybercriminals then told organizations to
The Fallout from Cl0p’s Attack is Growing Read More »
Yesterday, ransomware gang Cl0p began listing organizations affected by its exploit of file transfer software MOVEit. The gang used the exploit to steal data from potentially hundreds of companies around the world at the end of May. The gang had previously instructed affected companies to begin negotiations by June 14th to avoid being named and
Cl0p Starts Naming Victims Read More »
On Friday, the State of Illinois and the Minnesota Department of Education both revealed they were victims of the Cl0p ransomware gang. Cl0p exploited a vulnerability in file transfer software MOVEit at the end of May, breaching up to hundreds of organizations worldwide. Minnesota Department of Education The Minnesota Department of Education (MDE) reported that
Two States Fall Victim to Ransomware Attack Read More »
Ransomware gang Cl0p has exploited a vulnerability in file transfer software MOVEit to compromise companies around the world. Security researcher Kevin Beaumont estimates “there are over one hundred” organizations affected by the attack, with British Airways, the BBC and Boots already confirmed as victims. Cl0p posted a message to companies who use MOVEit on their
Cl0p Tells Companies to Begin Negotiations Read More »
Valéry Marchive, a cybersecurity journalist, has published chat logs of negotiations between ransomware gangs and their victims. The goal, he explained in a Twitter thread, is to provide a resource for ransomware victims and researchers, since “What happens during #ransomware negotiations is rarely widely shared.” Background to the chats The chats take place after companies
Negotiating with Ransomware Gangs Read More »
T-Mobile needs to reset its “days since a data breach” counter back to 0, as Bleeping Computer reports the beleaguered wireless carrier has suffered its second data breach of 2023. What happened? According to information submitted to the Office of the Maine Attorney General, T-Mobile was breached by hackers between February 24th and March 30th,
T-Mobile Suffers Yet Another Data Breach Read More »
Online discussion forum Reddit reported on Thursday that its systems had been breached following a sophisticated phishing attack. In the breach notification, Reddit CTO Christopher Slowe, aka KeyserSosa, explained that the hacker “sent out plausible-sounding prompts pointing employees to a website that cloned the behavior of [Reddit’s] intranet gateway, in an attempt to steal credentials
Two-Factor Authentication Bypassed in Reddit Breach Read More »
T-Mobile has yet again suffered a data breach, this time affecting 37 million customers. The company reported in a press release that criminals pilfered customer names, addresses, email addresses, dates of birth and account numbers by abusing a piece of software called an API that allows computer programs to talk to each other. T-Mobile emphasized
What You Should Do After T-Mobile’s Most Recent Data Breach Read More »
Private information from over 200 million Twitter users has been published on a popular hacking forum for anyone to download. The data includes users’ email addresses and public information, such as account names and handles. The data was likely obtained in 2021 after bad actors exploited a vulnerability in Twitter’s software. The flaw meant they
What the Twitter Data Leak Means for You Read More »
