hacking

Krispy Kreme discloses cyberattack that is disrupting online orders

Security /

International doughnut chain Krispy Kreme disclosed a security incident on Wednesday, which the company said has caused  “certain operational disruptions, including with online ordering in parts of the United States.” Krispy Kreme disclosed the cyberattack in an 8-K filing with the SEC. The company said it was “notified regarding unauthorized activity on a portion of […]

Krispy Kreme discloses cyberattack that is disrupting online orders Read More »

US sanctions Chinese cybersecurity firm for firewall hacks targeting critical infrastructure

Security /

The U.S. sanctioned a Chinese cybersecurity company and one of its employees for exploiting a zero-day vulnerability in Sophos firewalls to target U.S. organizations. On Tuesday, the U.S. Treasury Department said Guan Tianfeng, an employee of Sichuan Silence, used the vulnerability to compromise approximately 81,000 firewalls in April 2020. The hacking campaign, detailed by Sophos

US sanctions Chinese cybersecurity firm for firewall hacks targeting critical infrastructure Read More »

US Senator announces new bill to secure telecom companies in wake of Chinese hacks

Security /

U.S. Democratic Senator Ron Wyden announced a new draft bill with the goal of securing American telephone networks and Americans’ communications in response to the massive hack of telecom providers allegedly done by Chinese government hackers.  In a press release on Tuesday, Wyden announced the Secure American Communications Act. The bill would order the Federal

US Senator announces new bill to secure telecom companies in wake of Chinese hacks Read More »

Hackers are exploiting a flaw in popular file-transfer tools to launch mass hacks, again

Security /

Security researchers are warning that hackers are actively exploiting another high-risk vulnerability in a popular file transfer technology to launch mass hacks.  The vulnerability, tracked as CVE-2024-50623, affects software developed by Illinois-based enterprise software company Cleo, according to researchers at cybersecurity company Huntress.  The flaw was first disclosed by Cleo in a security advisory on

Hackers are exploiting a flaw in popular file-transfer tools to launch mass hacks, again Read More »

Ukraine says Russian hackers are targeting country’s defense contractors

Security /

Ukraine’s Computer Emergency Response Team (CERT-UA) said in a report published over the weekend that a hacking group has been targeting the country’s defense and military companies with phishing attacks.  The CERT identified the hacking group as UAC-0185 — also known as UNC4221 — without saying who was behind the group. Earlier this year, however,

Ukraine says Russian hackers are targeting country’s defense contractors Read More »

North Korean hackers have stolen billions in crypto by posing as VCs, recruiters and IT workers

Security /

A venture capitalist, a recruiter from a big company, and a newly hired remote IT worker might not seem to have much in common, but all have been caught as imposters secretly working for the North Korean regime, according to security researchers.  On Friday at Cyberwarcon, an annual conference in Washington DC focused on disruptive

North Korean hackers have stolen billions in crypto by posing as VCs, recruiters and IT workers Read More »

Russia-linked hackers exploited Firefox and Windows zero-day bugs in ‘widespread’ hacking campaign

Security /

Security researchers have uncovered two previously unknown zero-day vulnerabilities that are being actively exploited by RomCom, a Russian-linked hacking group, to target Firefox browser users and Windows device owners across Europe and North America. RomCom is a cybercrime group that is known to carry out cyberattacks and other digital intrusions for the Russian government. The

Russia-linked hackers exploited Firefox and Windows zero-day bugs in ‘widespread’ hacking campaign Read More »

Snowflake hackers identified and charged with stealing 50 billion AT&T records

Security /

The U.S. government has accused Connor Moucka and John Binns of being the hackers who broke into the systems of AT&T, stealing around 50 billion customer call and text records.  In July, AT&T said hackers stole the phone records of “nearly all” of its cellular and landline customers, as well as calls and text message

Snowflake hackers identified and charged with stealing 50 billion AT&T records Read More »

Canadian authorities say they arrested hacker linked to Snowflake data breaches

Security /

A hacker suspected of involvement in a series of massive Snowflake-related hacks has been arrested in Canada, according to local authorities. Ian McLeod, a spokesperson for the Canadian Department of Justice, told TechCrunch in an email that, “following a request by the United States, Alexander Moucka (a.k.a. Connor Moucka) was arrested on a provisional arrest

Canadian authorities say they arrested hacker linked to Snowflake data breaches Read More »

Meet the Chinese ‘Typhoon’ hackers preparing for war

Security /

Of the cybersecurity risks facing the United States today, few loom larger than the potential sabotage capabilities posed by China-backed hackers, which top U.S. officials have described as an “epoch-defining threat.” In recent months, U.S. intelligence officials said Chinese government-backed hackers have been burrowing deep into the networks of U.S. critical infrastructure, including water, energy

Meet the Chinese ‘Typhoon’ hackers preparing for war Read More »