Tag Archive for: investigating

FBI investigating hack of its computer network: report

/in


The Federal Bureau of Investigation is investigating a hack on its own computer network, reports say.

In a statement to Fox News Digital, the FBI said it is “aware of the incident and is working to gain additional information.

“This is an isolated incident that has been contained,” a spokesman said.

JUSTICE DEPARTMENT SEIZES HIVE RANSOMWARE GANG WEBSITE 

“As this is an ongoing investigation, the FBI does not have further comment to provide at this time,” he added.

DATA SECURITY: WHO IS RESPONSIBLE FOR PROTECTING CYBER AMERICA? 

FBI New York City office building

A view of the Jacob K. Javits Federal Building in New York City, where the Federal Bureau of Investigation has a field office on the 23rd floor.

READ ON THE FOX NEWS APP

The spokesman would not elaborate when asked about the nature of the incident.

CLICK HERE TO GET THE FOX NEWS APP 

Agents of the Federal Bureau of Investigation

The FBI told Fox News Digital Friday that the “isolated incident” has “been contained.”

CNN, citing two sources briefed on the matter, reported that FBI officials believe the malicious cyber activity involved a computer system in its New York office that is used in investigations of images of child sexual abuse.

The timing and origin of the alleged incident remains unclear.

Source…

Atlassian Investigating Security Breach After Hackers Leak Data

/in


Enterprise software giant Atlassian has launched an investigation after a hacker group leaked information belonging to the company. 

A threat actor named SiegedSec, whose members have claimed to be hacktivists, announced on its Telegram channel and hacking forums that it “hacked the software company Atlassian”. 

They made 35 Mb of files public. This includes two image files apparently storing floor plans of Atlassian buildings in San Francisco and Sydney, and one file allegedly containing the information of 13,000 Atlassian employees, including names, email addresses, and phone numbers. 

Atlassian is still investigating the incident, but it appears that the data was stolen by the hackers from workplace platform Envoy, which the software giant uses to coordinate in-office resources. Atlassian has pointed out that product and customer data was not at risk as it’s not accessible through the Envoy application. 

Indeed, the leaked file that seems to contain Atlassian employee records does include numerous references to Envoy. However, the workplace company said it wasn’t actually hacked. 

Envoy founder Larry Gadea said on Twitter that they are investigating the incident, but at the moment there is no evidence that the company’s systems have been breached. Instead, the attackers used an API key associated with Atlassian to access the data, “much like any other customer or user would do as part of regular service”.

SiegedSec has been around since February 2022, targeting dozens of organizations around the world. The hackers have defaced websites, hijacked online accounts, and leaked data allegedly stolen from victims. 

It’s not uncommon for hacker groups like SiegedSec to make exaggerated claims about their attacks. 

Related: Atlassian Warns of Critical Jira Service Management Vulnerability

Related: CISA Warns of Attacks Exploiting Recent Atlassian Bitbucket Vulnerability

Related: Atlassian Expects Confluence App Exploitation After Hardcoded Password Leak

Source…

B.C. school district investigating data breach affecting up to 19,000 people

/in


The Maple Ridge-Pitt Meadows School District is warning its school community about a data breach involving more than 19,000 records.

In a bulletin posted Thursday, the district said it is investigating how files containing first names, last names, schools/departments, district email addresses and student grades were released.

Read more:

BC Cancer Foundation warns donors of ransomware attack

Read next:

Air Canada says no, then gives customer credit after booking error

The release likely affects both students and staff, the district said.

“The information that has been accessed, while concerning, was confined to easily attainable information with limited use,” the district said in the bulletin.

“The sensitivity of this information is considered low. At this time, the school district has no evidence that critical information was disclosed.”

Story continues below advertisement


Click to play video: 'Cyber security experts say ransomware data breach in health care sector is a lesson for everyone'

Cyber security experts say ransomware data breach in health care sector is a lesson for everyone


However, it warned that the information — while not necessarily sensitive — could be used for “targeted phishing attacks.”

Trending Now

Phishing is a common online fraud tactic where a bad actor tries to trick users into clicking on malicious links or divulging sensitive information such as passwords, credit card information or other personal information.

The district is warning students, families and staff to be extra vigilant if using their district email account for any emails asking for personal information or passwords.

Read more:

TransLink warns staff hackers accessed personal banking information in cyberattack

Read next:

‘Is this real?’: Quick pick the key to $60M…

Source…

Crown Point schools still investigating possible cyber hack – Chicago Tribune

/in


Crown Point Community School Corp. officials say it’s still unclear if personal information was accessed in a possible network breach that forced the cancellation of classes on Nov. 28.

Superintendent Todd Terrill advised staff and student families to monitor financial statements and credit card reports for suspicious and unauthorized activity.

“As previously noted, these investigations can take weeks,” Terrill said in a message to staff and families.

“I know many of you have concerns and have waited patiently for more news. Our team shares those concerns. Although we have not yet determined if any sensitive or personal information is at risk as a result of this event, we are providing you with information about proactive measures you can take to protect your or your child’s information should you feel it is appropriate to do so.”

Terrill said those concerned could place a fraud alert on credit files at no cost for one-year or place a security freeze on credit files which prohibits a consumer reporting agency from releasing information in a credit card report without express authorization.

He said once the investigation is complete, the district will directly notify anyone whose information is affected.

Assistant Crown Point Police Chief Jim Janda said the network outage incident hasn’t been reported to police.

After missing one day, students returned to class Nov. 29 and most everyday activities have resumed.

Last month, officials suspected the network was compromised and brought in a cybersecurity firm to investigate and work with the district’s technology team to restore service.

A year ago, the Duneland School Corp. in Chesterton experienced a computer system hack that exposed personal employee data including Social Security numbers, birth dates and insurance plan information.

The Duneland cyber breach is being investigated by the FBI, a school official said.

The district has updated its system to include two-factor authentication for access to its private network and a phishing email program was added for all users.

Geofencing was added on firewall policies, preventing traffic from outside the U.S. It switched to encrypted backups and added other tools to protect the…

Source…