Tag: seeking | SpinSafe

Deforest police seeking man who fled traffic stop

August 20, 2023/in Internet Security

Critical components of U.S. infrastructure, including hospitals and power plants, are increasingly connected to the internet and are at risk of exploitation from cybercriminals lurking in the world’s darkest corners.

And one specific kind of malware attack has leaders in the private and public sectors sounding the alarm over the last two years: ransomware.

Twingate collected data from the FBI’s 2021 Internet Crime Report to show which infrastructure sectors were most often targeted by ransomware attacks. 2021 was the first year in which the FBI’s Internet Crime Complaint Center began tracking ransomware incidents in sectors considered critical infrastructure.

The FBI’s Internet Crime Complaint Center received 649 reports of ransomware incidents targeting critical infrastructure in 2021. In a memo in the latest report, FBI Deputy Director Paul Abbate described the increase in cyberattacks seen last year—not only in infrastructure sectors but overall—as “unprecedented.”

The FBI defines critical infrastructure as assets or systems that “are considered so vital to the United States that their incapacitation or destruction would have a debilitating effect on our security, national economy, public health or safety.”

Dozens of attacks last year were leveled at government entities, leading the National Association of State Chief Information Officers to name ransomware its top cybersecurity concern in 2021.

But the frequency of ransomware incidents was even more pronounced in the health care, financial services, and information technology sectors, which saw the most recorded attacks of any other infrastructure sector last year, according to the FBI. The military and defense sector reported the fewest incidents, with just one ransomware attack in 2021.

And these culprits aren’t always lone wolf operations seeking the biggest payout. Most ransomware attacks can be linked to state actors who would harbor more motives than financial gain in sponsoring ransomware attacks. Crypto-tracking company Chainalysis reported that most ransomware payments eventually went to Russian-linked hackers.

The FBI recommends updating operating systems and software, implementing…

Source…

Oakland Police Union Seeking Damages Suffered in Ransomware Attack on City – NBC Bay Area

April 4, 2023/in Internet Security

Oakland police officers have filed a claim against the city for damages suffered due to the ransomware attack on the city in February, officials with the police union said Monday.

The claim was filed Thursday by attorneys for the Oakland Police Officers’ Association, which represents more than 700 officers.

The union is asking for monetary compensation as well as credit monitoring services, bank monitoring services, credit restoration services and identity theft insurance.

“Having to file this legal claim is disappointing,” said police union President Barry Donelan in a statement. “Oakland employees trusted the city with their personal and confidential data, and the city failed them by releasing it through a combination of incompetence and negligence.” City officials, including the mayor’s office, said last week that they would meet with the police union following a threat of litigation.

As of Monday, there hasn’t been a meeting, but union officials said they are optimistic a meeting will occur.

A spokesperson for Mayor Sheng Thao on Monday referred a request for comment to City Attorney Barbara Parker’s office.

Parker’s office did not have a comment Monday, saying the office just received the claim and has not had time to review it. The city was closed Friday for Cesar Chavez Day.

The ransomware attackers released private, personal information of police officers, Donelan said. Reportedly, other employees’ private information was released, too.

The attack started Feb. 8. The attackers crippled the city’s information technology systems and demanded ransom to free the systems.

Attorneys for the police union said the city was repeatedly warned in the past and recently of “significant deficiencies in the security of its information technology systems,” according to the claim filed Thursday.

The claim was filed by the police union’s attorneys Rains, Lucia, Stern, St. Phalle and Silver and is a precondition for filing a lawsuit against the city, attorney Rockne Lucia Jr. said.

“We are currently evaluating all of our options and will make a determination on how to protect the interests of the members of the OPOA in the next few weeks,” Lucia said by email….

Source…

UIDAI Seeking 20 Ethical Hackers to Protect Its Data, Plug Security Bugs. Read Details

July 23, 2022/in Computer Security

New Delhi: Amid increasing cyber attacks against key infrastructure and government websites in India, the Unique Identification Authority of India (UIDAI) has quietly announced a “bug bounty programme” to hire 20 ethical hackers to protect its website and resources from nation-state bad actors. The recently-issued circular said that the programme will be limited to 20 registered candidates. “The UIDAI reserves the right to evaluate and select top 20 suitable candidates for participation in the programme,” the authority said in its circular.Also Read – Meta Likely to Invest $3 Million in Indian Startup ‘Better Opinions’: Report

It added that the candidate should be listed in the top 100 of the bug bounty leaders board such as HackerOne, or Bugcrowd. The candidate may also be listed in the bounty programmes “conducted by reputable companies such as Microsoft, Google, Facebook, Apple etc. or the candidate should be active in the bug bounty community/programmes and should have submitted valid bugs or received bounty in the last one year”. Also Read – What Are The Top Brands For Hackers to Steal People’s Data Via Phishing?

The bug bounty programme of the UIDAI comes at a time when earlier reports claimed that Chinese state-sponsored hackers allegedly infiltrated and stole data from it. The authority allayed the fears, saying, the leaking of Aadhaar numbers will not pose any hacking threat to bank accounts. Also Read – Aadhaar FaceRD App Launched By UIDAI | Here’s How You Can Confirm Your Identity With Face Authentication

‘Like just by knowing your ATM card number….’

“Just as by merely knowing your ATM card number, no one can withdraw money from the ATM machine; by knowing your Aadhaar number alone, no one can hack into your bank account and withdraw money,” the UIDAI said while posting some myth busters related to Aadhaar on its website. “Rest assured, there has not been a single case of financial loss due to Aadhaar. Aadhaar number alone cannot be used for banking or any other service,” it added.