The Federal Communications Commission is the next US regulator hoping to hold companies more accountable for data breaches. From a report: Chairwoman Jessica Rosenworcel has shared a rulemaking proposal that would introduce stricter requirements for da…
Apple releases iOS 15.2.1 to patch iPhones and iPads against HomeKit flaw
Apple has fixed a security vulnerability in iOS and iPadOS that could be exploited via HomeKit to launch persistent denial of service (DoS) attacks. The technology giant released iOS 15.2.1 and iPadOS 15.2.1 on Wednesday to patch the so-called “doorLock” flaw, which was disclosed earlier this month by security researcher Trevor Spiniolas. The bug affects iPhones […]
Hackers Can Cut the Lights With Rogue Code, Researchers Show
Safety device used for electrical distribution worldwide could be hacked to turn off power, according to cybersecurity experts. From a report: As Ang Cui added more juice to the power grid, overhead electric lines began to glow bright orange. Then, wit…
Ransomware Attack Leads To Jail Lockdown
Bernalillo County filed an emergency notice in federal court last week because a ransomware attack made the Metropolitan Detention Center unable to comply with terms of a settlement agreement in a years-running lawsuit over jail conditions. From a repo…
CISA Director: We’ll Be Dealing With Log4j For a Long Time
Security professionals will be dealing with the fallout from the Log4j bug for a long time to come, top officials for the Cybersecurity and Infrastructure Security Agency said Monday. CNET reports: If left unpatched or otherwise unfixed, the major secu…
Be aware: Your company is watching you
Call it the public service announcement to start off your year: If you’re working at a startup where IT is a little fuzzy, policies are evolving as the company is being built and the organization is evolving quickly, you’re at higher risk than usual that your employers are willing to move fast, do things and […]
氏名と生年月日でパスワードを割り出していたSNSの不正アクセス事案についてまとめてみた – piyolog
2022年1月6日、愛知県警はプライベートを盗み見する目的で不正アクセスを行っていたなどとして不正アクセス禁止法違反の容疑で男を逮捕しました。ここでは関連する情報をまとめます。 4年前から毎日不正アクセスと供述 愛知県警豊田署、足助署、県警サイバー犯罪対策課は2020年3月22日から2021年2月10日の4回に渡り愛知…
Discord Hacking is the Newest Threat For NFT Buyers
One compromised admin account led to two projects being scammed in a day. From a report: On Tuesday, December 21st, two NFT projects fell victim to the same attack. Like many projects in the crypto world, the NFT collection Monkey Kingdom and in-game a…
Finalsite ransomware attack forces 5,000 school websites offline
Finalsite, an internet software house that provides school districts with website design, hosting, and content management solutions, has been hit by a ransomware attack. Earlier this week, school districts whose websites are hosted by Finalsite discovered that they were no longer accessible or displayed errors. While at the time Finalsite blamed the issues on “performance difficulties” […]
マイクロソフトが9年前に修正したはずの脆弱性が、いまになってハッカーに悪用され始めた
ハッキングに幅広く悪用されてきたマルウェア「ZLoader」による攻撃に、マイクロソフトが13年に修正したはずのWindowsの欠陥が悪用されている問題が明らかになった。ところが、この問題に対処する修正プログラムの適用がオプションだったこともあり、いまも修正されていないコンピューターがハッカー集団の攻撃対象になり続けている。
…