WASHINGTON — For years, the cybersecurity firm FireEye has been the first call for government agencies and companies around the world who have been hacked by the most sophisticated attackers, or fear they might be.
Now it looks like the hackers — in this case, evidence points to Russia's intelligence agencies — may be exacting their revenge.
It was a stunning theft, akin to bank robbers who, having cleaned out local vaults, then turned around and stole the F.B.I.'s investigative tools. In fact, FireEye said on Tuesday, moments after the stock market closed, that it had called in the F.B.I.
Quite a lot has been going on:
Hackers are targeting kindergartens for profit, warns government
Kindergartens and elementary schools struggling to educate children amid sustained coronavirus -induced remote learning can officially add a new woe to their list: hackers.
The U.S. government on Thursday issued a statement warning that criminals are specifically going after schools' distance-learning programs. And while this fits a well-established pattern, the latest alert from the Cybersecurity & Infrastructure Security Agency (CISA) makes it clear that it's no longer just colleges and universities that need to be on their guard.
Hackers steal Pfizer/BioNTech COVID-19 vaccine data in Europe, companies say | Reuters
The European Medicines Agency (EMA), which assesses medicines and vaccines for the European Union, said hours earlier it had been targeted in a cyberattack. It gave no further details.
Pfizer and BioNTech said they did not believe any personal data of trial participants had been compromised and EMA "has assured us that the cyber attack will have no impact on the timeline for its review."
It was not immediately clear when or how the attack took place, who was responsible or what other information may have been compromised.
Chinese embassy blames hackers after retweet of Trump false election claim
The Chinese embassy in the U.S. said its Twitter account was hacked after it retweeted a baseless claim from President Donald Trump that the Democrats cheated in the election.
"If somebody cheated in the Election, which the Democrats did, why wouldn't the Election be immediately overturned? How can a Country be run like this?," Trump tweeted on Wednesday, without any evidence.
* * *
Twitter had put a label on Trump's initial tweet saying: "This claim about election fraud is disputed."
Quite a lot has been going on:
Hacking Group Dropping Malware Via Facebook, Cloud Services
"We noticed the beginning of the campaign in September 2020, with more attacks happening between October and November 2020, in correlation of the progress of the peace and normalization talks between Israel and Arab nations," a researcher with Cybereason's Nocturnus Team tells Information Security Media Group.
According to Cybereason, "all of [these] can allow the attackers the ability to execute arbitrary code and collect sensitive data for exfiltration from infected computers."
The Hacker Mind Podcast: Hacking OpenWRT - Security Boulevard
In this episode, Guido Vranken talks about his approach to hacking, about the differences between memory safe and unsafe languages, his use of fuzz testing as a preferred tool, and how he came to discover the validation error in OpenWRT, as well as a serialization error in cereal, and other vulnerabilities.
* * *
Vamosi: Your router is very important. It’s what stands between you and the internet. The entire internet. So all your home or office devices connect to it, and it then connects to your provider. The same is true from reverse. If I’m coming from the internet, I can be stopped at your router. But I know that in the past some manufacturers have been slow to update their routers. That they bundle a lot of extra stuff.
Research: Millions of smart devices vulnerable to hacking
BOSTON (AP) — Researchers at a cybersecurity firm say they have identified vulnerabilities in software widely used by millions of connected devices — flaws that could be exploited by hackers to penetrate business and home computer networks and disrupt them.
There is no evidence of any intrusions that made use of these vulnerabilities. But their existence in data-communications software central to internet-connected devices prompted the U.S. Cybersecurity and Infrastructure Security Agency to flag the issue in an advisory .
Hackers accessed vaccine documents in cyber-attack on EMA | Coronavirus | The Guardian
German biotech firm BioNTech said on Wednesday that documents relating to the Covid-19 vaccine it has developed with Pfizer were "unlawfully accessed" after a cyber-attack on Europe's medicines regulator.
Earlier, the European Medicines Agency (EMA) – which is responsible for assessing and approving vaccines for the European Union – said it had been targeted in a cyber-attack. It gave no further details.
* * *
It was not immediately clear when or how the attack took place, who was responsible or what other information may have been compromised.
Happening on Twitter
FireEye breach is a big deal. But some of the commentary that hit my inbox yesterday was insanely over-the-top. One… https://t.co/LceYQ6fdWy a_greenberg (from New York) Wed Dec 09 17:12:31 +0000 2020
The prominent cybersecurity firm FireEye has revealed that it was hacked recently in a "state-sponsored attack." So… https://t.co/XTZxvSyOKJ NPR Wed Dec 09 05:09:04 +0000 2020
FireEye, a major U.S. cybersecurity company with extensive government contracts, has been hacked by a foreign count… https://t.co/zc0qhSIdSg BreakingNews (from NYC, LA, London) Tue Dec 08 22:49:22 +0000 2020
BREAKING: A top cyber firm, FireEye, -- was breached--likely by Russia, and its sensitive "red team" tools were sto… https://t.co/RZXMJhsDE1 nakashimae (from Washington, D.C.) Tue Dec 08 21:24:52 +0000 2020
No comments:
Post a Comment