Feds Say 4 Chinese Hackers Took Down Equifax The Department of Justice indicted 4 members of the Chinese People Liberation Army, saying that they were responsible for detecting the fact that Equifax did not patch their some of their servers and thus were easily hackable. This, of course, means that the hack did not require […]
Continue reading → [DISPLAY_ACURAX_ICONS]Electronic Warfare Associates (EWA), a well known defense contractor in DC, was hit by a ransomware attack. The tagline on the homepage of their website says that they are enabling a more secure future. A Google search last week for the company brought up these results: The researcher who discovered the problem said it seems […]
Continue reading → [DISPLAY_ACURAX_ICONS]Medical devices have never been subjected to much security testing – a fact that the FDA may argue with, but which is visibly accurate. This time it is GE’s CIC Pro, a workstation that hospital staff uses to manage multiple GE patient devices on a ward. They can use the device to monitor patients or […]
Continue reading → [DISPLAY_ACURAX_ICONS]Albany Int’l Airport Hit By Ransomware via MSP In what is becoming an all too common story, the Managed Service Provider that supported Albany, NY’s airport, Logical Net of Schenectady, NY, was hacked and from there, the hackers were able to connect to the airports administrative network and infect it with REvil ransomware, the same […]
Continue reading → [DISPLAY_ACURAX_ICONS]Starbucks Leaves Their API Key in a Public Github Repository Vulnerability hunter Vinoth Kumar found a Starbucks API key in a public Github repo. The flaw was set to CRITICAL after they verified that the key gave anyone access to their Jumpcloud (An AD alternative) directory. The problem was reported on October 17th and it […]
Continue reading → [DISPLAY_ACURAX_ICONS]I hate to keep beating on this drum, but the message is important and the news keeps getting worse. Yesterday I wrote about yet another managed service provider that was hit by a ransomware attack and a number of their clients had their data encrypted. Today the Wall Street Journal is reporting that the Cloud […]
Continue reading → [DISPLAY_ACURAX_ICONS]