FBI Warns US Colleges of Widespread VPN Credential Leaks – On Russian Crime Forums Here’s a shocker. Cybersecurity practices at US colleges and universities are not so good. According to an FBI PIN (Color WHITE, general distribution), Russian cybercrime forums are offering network and VPN credentials for sale for many US higher education institutions, some […]
Continue reading → [DISPLAY_ACURAX_ICONS]Tomorrow is the one-year anniversary of the Colonial Pipeline attack. The government has done more to improve cybersecurity in the last year than it had done in the last 10 years. But there is still a lot more to do. Jury Finds Norton/Lifelock Infringed on Two Columbia University Patents Even in the world of cybersecurity, […]
Continue reading → [DISPLAY_ACURAX_ICONS]As this war continues to grind on and the toll on people’s lives and civilian infrastructure is incalculable, the cyber war continues as well. Here are just a couple of recent Russian cyber-losses. Petrovsky Fort owns the largest office complexes in Saint Petersburg, Russia’s second largest city. Anonymous hacked over 300,000 of their emails and […]
Continue reading → [DISPLAY_ACURAX_ICONS]Hackers Hack Russia’s Largest State Owned Media Corporation Hackers stole 20 years of communications including almost a million emails from the All-Russia State Television and Radio Broadcasting Company (VGTRK). Those emails were published by DDoSecrets. VGTRK runs 5 national TV stations, 5 radio stations and numerous propaganda outlets. The data is available for download as […]
Continue reading → [DISPLAY_ACURAX_ICONS]How Many Times Do I Need to Say – Crypto is Software, Software Has Bugs, Your Money is at Risk Decentralized Finance platform (DeFi) Revest Finance said that it lost $2 million due to a software bug and, oh yeah, (a) the can’t recover the funds, (b) they do not have the money to cover […]
Continue reading → [DISPLAY_ACURAX_ICONS]Incident and Ransomware Reporting Requirement in Just Passed Spending Bill President Biden signed a bill that requires critical infrastructure operators to report significant cyber incidents to CISA within 72 hours after they reasonably believe an incident has occurred and within 24 hours of making a ransomware payment. The ransomware reporting requirement applies even if it […]
Continue reading → [DISPLAY_ACURAX_ICONS]