If you think that hackers being inside your systems is a bad idea, that's probably because you've been conditioned into equating hackers with criminals. However, the fact is that while plenty of cybercrimes do involve hacking, all hackers are not criminals and hacking itself is not a crime.
"Hacking just means to find a solution to a problem, and we already have a term for those doing this illegally: a cybercriminal," Luke Tucker, vice-president of community at hacker-powered bug bounty platform HackerOne, says. "The reality is that hackers have a range of different motivations, from those setting out to illegally break into organizations or do harm, to others who are helping to do good."
Hackers breach Electronic Arts, stealing game source code and tools - CNN
Ransomware hackers remain largely out of reach behind Russia's cybercurtain - Los Angeles
U.S. authorities are running into a major obstacle in holding hackers responsible for an onslaught of ransomware attacks: The extortionists remain out of reach in Russia, safely ensconced behind a cybercurtain as difficult to penetrate as the iron one that defined the Cold War.
"The criminal hacking the Russian government is willing to tolerate and take advantage of is beyond what we see in virtually every other country," said John Demers, the Justice Department's top national security prosecutor who has battled ransomware since 2017. "It is very difficult to stop hacking when it is occurring in a country that is more than just tolerating it, but is quite happy with it."
Hack the Army: US Army assets hacked by crack team of 40 operatives
Across six weeks, starting in January 2021, a team of hackers described as top-tier military and civilian operatives took aim at military assets belonging to the U.S. Department of the Army and the U.S. Defense Digital Services. These assets included a number of army.mil and westpoint.edu applications. The operation was a success, and that's no bad thing because the hackers were participating in the third Hack the Army event to have taken place since 2016.
You have to remember that while many cybercrimes involve hacking, that doesn't mean all hackers are criminals. In this case, the hacker-powered event was part of a bug bounty scheme developed to uncover previously unknown vulnerabilities 'hiding in plain sight' so they can be fixed before adversaries are able to exploit them and weaken national security.
Hackers attack McDonalds in U.S., South Korea, Taiwan | Fortune
Beef supplier JBS paid ransomware hackers $11 million
JBS, the largest beef supplier in the world, paid the ransomware hackers who breached its computer networks about $11 million, the company said Wednesday.
The company was hacked in May by REvil, one of a number of Russian-speaking hacker gangs, leading meat plants across the U.S. and Australia to shut down for at least a day. News of the payment was first reported by The Wall Street Journal .
Like many other ransomware groups, REvil has made millions in recent years by hacking organizations, encrypting their files and demanding fees, often large bitcoin payments, in exchange for a decryptor program and a promise not to leak the files to the public.
Ransomware's suspected Russian roots point to a long detente between the Kremlin and hackers -
MOSCOW — The ransomware hackers suspected of targeting Colonial Pipeline and other businesses around the world have a strict set of rules.
"In the West you say, 'Don't . . . where you eat,' " said Dmitry Smilyanets, a former Russia-based hacker who is now an intelligence analyst at Recorded Future, a cybersecurity company with offices in Washington and other cities around the world. "It's a red line."
One password allowed hackers to disrupt Colonial Pipeline, CEO tells senators | Reuters
/cloudfront-us-east-2.images.arcpublishing.com/reuters/ZHT7SWWP7VMIRK7AZML33B2JTQ.jpg)
The Colonial Pipeline hack demonstrated that much of the company's infrastructure remains highly vulnerable and the government and companies must work harder to prevent future hacks, senators said during the hearing.
Security experts call the use of a single-factor login system a sign of poor cybersecurity "hygiene." They recommend two-factor authentication, which requires a secondary measure like a mobile text or hardware token, and most major companies require this across all internal applications.
Tips to help keep your crypto wallet secure
The Justice Department on Monday reported it successfully retrieved $2.3 million in bitcoin paid by Colonial Pipeline to ransomware hackers in April.
But the news caused a stir of confusion online — some speculated that bitcoin was "hacked," and on Tuesday, the price of bitcoin seemed to slide due to concerns over security of the cryptocurrency.
Though it isn't exactly clear how it was done, experts say the FBI's ability to retrieve the bitcoin ransom was due to the criminals' storage of their private keys, rather than any vulnerability with the cryptocurrency itself.
No comments:
Post a Comment