Russia Has Taken No Action to Combat Ransomware, FBI Says

Russia Has Taken No Action to Combat Ransomware, FBI Says

Critical Infrastructure Security , Cybercrime , Cybercrime as-a-service White House Has Been Identifying Top Suspects and Sharing Intelligence With Moscow Mathew J. Schwartz (euroinfosec) • September 15, 2021     U.S. President Joe Biden and Russian President Vladimir Putin meeting in Geneva on June 17, 2021 (Photo: Ministry of Foreign Affairs of Russia via Twitter/CC)…

Three former US intelligence operatives fined for working as hackers-for-hire for UAE

Three former US intelligence operatives fined for working as hackers-for-hire for UAE

Three former US intelligence operatives who provided hacker-for-hire services to the United Arab Emirates are facing federal charges in the US for conspiring to violate export control, computer fraud and access device fraud laws. Marc Baier, 49, Ryan Adams, 34, and a former U.S. citizen, Daniel Gericke, 40 are accused of helping the UAE government…

CISA Appoints Kiersten Todt as New Chief of Staff

CISA Appoints Kiersten Todt as New Chief of Staff

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday announced that it has appointed Kiersten Todt as its new chief of staff. Before joining CISA as chief of staff, Todt served as managing director of the non-profit Cyber Readiness Institute (CRI). She also served as president and managing partner at risk management consulting firm…

Apple Just Issued This Urgent Warning for All of Its Devices

Apple Just Issued This Urgent Warning for All of Its Devices

In order to bypass the possibility of getting hit by hackers, Apple just issued emergency software updates and is asking that everyone update their devices as soon as possible. On Sept. 13, Ivan Krstić, Apple’s head of security engineering and architecture, told the NYT that he is urging customers to install iOS 14.8, MacOS 11.6, and…

Ex-US intel, military trio were cyber-mercenaries for UAE, say prosecutors • The Register

Ex-US intel, military trio were cyber-mercenaries for UAE, say prosecutors • The Register

Three former US intelligence and military operatives broke America’s weapons export and computer security laws by, among other things, helping the United Arab Emirates hijack and siphon data from people’s iPhones, it emerged on Tuesday. US citizens Marc Baier, 49, and Ryan Adams, 34, and ex-citizen Daniel Gericke, 40, were charged [PDF] with using “illicit,…

BitSight, Mastercard and Tenable Make Acquisitions

BitSight, Mastercard and Tenable Make Acquisitions

3rd Party Risk Management , Blockchain & Cryptocurrency , Governance & Risk Management Risk Assessment, Improving DevSecOps, Cryptocurrency Risk Research Drive Deals Doug Olenick (DougOlenick) • September 14, 2021     Merger and acquisition activity picked up again in September with BitSight, Tenable and Mastercard all making deals. See Also: An All-in-One Vulnerability Management, Detection,…

Millions of HP OMEN Gaming PCs Impacted by Driver Vulnerability

Millions of HP OMEN Gaming PCs Impacted by Driver Vulnerability

E Hacking News – Latest Hacker News and IT Security News 15. September 2021 This article has been indexed from E Hacking News – Latest Hacker News and IT Security News   On Tuesday, security experts revealed data about a high-severity weakness in the HP OMEN driver software, which affects millions of gaming laptops worldwide…

Massachusetts Attorney General Probing T-Mobile Breach

Massachusetts Attorney General Probing T-Mobile Breach

Breach Notification , Cybercrime , Fraud Management & Cybercrime Security Incident Exposed Personal Information for 54 Million People Scott Ferguson (Ferguson_Writes) • September 14, 2021     Photo: T-Mobile Massachusetts Attorney General Maura Healey says her office is now probing the massive data breach at T-Mobile that exposed the personal information of 54 million people,…

Travis CI Flaw Exposed Secrets From Public Repositories

Travis CI Flaw Exposed Secrets From Public Repositories

Access Management , DevSecOps , Identity & Access Management Critics Say Travis CI’s Security Bulletin is Insufficient Jeremy Kirk (jeremy_kirk) • September 15, 2021     Travis CI, a Berlin-based continuous integration vendor, has patched a serious flaw that exposed signing keys, API keys and access credentials, putting thousands of organizations potentially at risk. See…