HOTforSecurity
The blog on the sizzling world of computer security: steamy stories from the dynamic world of internet fraud, scams, malware – and gossip. Powered by Bitdefender.
CISA and FBI Observed APT Groups Targeting State Networks Related to US Election Systems
The Cybersecurity and Infrastructure Security Agency (CISA) and the FBI issued an advisory after spotting advanced persistent threat (APT) actors exploiting multiple legacy vulnerabilities combined with a newer privilege escalation vulnerability—CVE-2020-1472—in Windows ...
Morgan Stanley Receives $60 Million Fine for Improper Handling of Customer Data
Alina Bizga | | class action lawsuit, Data breach, data mishandling, Digital Privacy, Industry News, Morgan Stanley, OCC, Office of the Comptroller of the Currency
Morgan Stanley investment bank must pay a whopping $60 million fine for failing to properly decommission multiple business data centers that stored sensitive customer information, the Office of the Comptroller of the ...
Security Researchers Awarded over $250,000 for Reporting 55 Vulnerabilities in Apple’s Bug Bounty Program
Alina Bizga | | Apple Bug Bounty, Apple Vulnerability, archive, critical vulnerability, security researchers, Vulnerabilities
A comprehensive three-month analysis of Apple’s online services has netted a team of security researchers a $288,500 reward after reporting critical vulnerabilities as part of its bug bounty program. In total, the ...
Personal and Medical Information of Children and Adults Stolen in DHS Data Breach
Alina Bizga | | Cyber-attack, Data breach, DHS, Digital Privacy, Georgia Department of Human Services, Industry News, private health information, stolen data, stolen personal identifiable information
Cyberattackers have managed to steal personal and medical information of children and adults involved in Child Protective Services (CPS) and DHS Division of Family & Children Services (DFCS) cases, the Georgia Department ...
Prison Video-Calling Service Exposes Call Transcripts Between Convicts and Attorneys
A security researcher has discovered a critical security lapse in a popular video visitation service for correctional facilities that exposed the call logs and transcriptions of conversations between inmates and the outside ...
Tesla Fires Employee for Allegedly Sabotaging Operations at California-Based Factory
Alina Bizga | | Industry News, internal sabotage, malicious actor, rogue employee, Security Incident, Tesla
Employees at the Tesla car-manufacturing plant in Freemont, California, have been informed by company officials that a former worker “maliciously sabotaged” operations at the factory last month. According to an internal memo ...
Massachusetts Public School District Cancels Online Classes after Alleged Cyberattack
Alina Bizga | | cyberattack, Industry News, Massachusetts Public School District, online classes, online learning, ransomware attack, Springfield Public Schools
More than 60 Springfield Public Schools shut down remote learning after a cyberattack affected the school district’s IT network on October 8. Yesterday, the second-largest school district in Massachusetts, offering classes for ...
Former Medical Transcriptionist Accused of Trying to Extort Toronto Hospital Using Stolen Patient Data
Alina Bizga | | Data breach, Digital Privacy, extortion, Industry News, medical data, St. Michael’s Hospital, Unity Health Toronto
Personal information of roughly 150 patients of Toronto-based St. Michael’s Hospital has been stolen in a data breach, allegedly by a former third-party employee accused of taking them while on duty. According ...
COVID-19 Vaccine Trials Slowed Down by a Ransomware Attack
Silviu STAHIE | | AstraZeneca, COVID-19, eResearchTechnology, ERT, Industry News, IQVIA, Johnson & Johnson, Pfizer, vaccine
eResearchTechnology, a company that offers clinical services and builds software used by the biomedical industry, was hit by a ransomware attack on September 20. Due to the extensive use of its tool ...
Emotet Is Back and It’s Targeting Local and State Governments, CISA Warns
The Emotet botnet is picking up steam again, according to an advisory issued by the Cybersecurity and Infrastructure Security Agency (CISA). The agency directly warns state and local governments because they appear ...