Tag • #hacking

chevron_right

Is the UK resilient enough to withstand a major cyber-attack?

news.movim.eu / TheGuardian · Friday, 19 July - 14:59

Microsoft’s IT outage reveals the fragility of our software systems and the risks of a more serious technology collapse

• Global Microsoft IT outage: latest updates

Planes grounded, trains delayed, television stations off air, hospital appointments cancelled, electronic payments halted. No, it wasn’t the start of a massive cyber-attack from Russia, or the backdrop to a Hollywood blockbuster, but an IT upgrade that unexpectedly went disastrously wrong.

That it had such widespread effects is to some extent testament to the ubiquity of Microsoft’s Windows operating system, a well-known global dependency, and more particularly to a faulty software update pushed out by the security and anti-virus company CrowdStrike to its widely used Falcon software system.

chevron_right

Hackers claim Disney data theft in protest against AI-generated artwork

news.movim.eu / TheGuardian · Tuesday, 16 July - 17:31

NullBulge group said it was leaking files from Disney’s internal Slack channel to ‘protect artists’ rights’

Hacktivists claim to have stolen more than a terabyte of data from Disney’s internal chat platform and are leaking the information online in a protest against what they say is the company’s anti-artist stance.

The group, which calls itself NullBulge, has been active since at least May. It claims to be motivated by a desire to “protect artists’ rights and ensure fair compensation for their work”. On Friday, it published the entirety of Disney’s internal Slack channel online through the decentralised BitTorrent filesharing platform.

chevron_right

Disney victime d’un piratage : les données volées sont-elles dangereuses ?

news.movim.eu / JournalDuGeek · Tuesday, 16 July - 10:33

Disney Hack Piratage 2024

Suite à la revendication d'un groupe de hackers ce week-end, voici ce que l'on sait sur cette fuite de données.

chevron_right

Hackers leak alleged Taylor Swift ticket data to extort Ticketmaster

news.movim.eu / TheGuardian · Friday, 5 July - 21:36

Hackers claim they obtained barcode data for hundreds of thousands of tickets to Eras tour and demand millions in ransom

Hackers claimed this week that they had obtained barcode data for hundreds of thousands of tickets to Taylor Swift’s Eras tour, demanding that Ticketmaster pay millions in ransom money or they would leak the information online.

The hacking group posted samples of the data to an online forum– ticket data on Swift’s shows in Indianapolis, Miami, and New Orleans – and alleged that it possessed an additional 30m million barcodes for other high-profile concerts and sporting events.

chevron_right

Critical MOVEit vulnerability puts huge swaths of the Internet at severe risk

news.movim.eu / ArsTechnica · Wednesday, 26 June - 23:31

Critical MOVEit vulnerability puts huge swaths of the Internet at severe risk

Enlarge

A critical vulnerability recently discovered in a widely used piece of software is putting huge swaths of the Internet at risk of devastating hacks, and attackers have already begun actively trying to exploit it in real-world attacks, researchers warn.

The software, known as MOVEit and sold by Progress Software, allows enterprises to transfer and manage files using various specifications, including SFTP, SCP, and HTTP protocols and in ways that comply with regulations mandated under PCI and HIPAA . At the time this post went live, Internet scans indicated it was installed inside almost 1,800 networks around the world, with the biggest number in the US. A separate scan performed Tuesday by security firm Censys found 2,700 such instances.

Causing mayhem with a null string

Last year, a critical MOVEit vulnerability led to the compromise of more than 2,300 organizations , including Shell, British Airways, the US Department of Energy, and Ontario’s government birth registry, BORN Ontario, the latter of which led to the compromise of information for 3.4 million people.

Read 10 remaining paragraphs | Comments

chevron_right

NHS England confirms theft of patient records data from its provider

news.movim.eu / TheGuardian · Monday, 24 June - 18:37

Russian group Qilin is understood to have hacked south-east London blood test provider Synnovis on 3 June

Data from a ransomware attack on NHS provider Synnovis has been confirmed as having come from the service, NHS England has said.

Synnovis, which manages blood tests for NHS trusts and GP services, primarily in south-east London, was the victim of a cyber-attack – understood to have been carried out by the Russian group Qilin – on 3 June.

chevron_right

UK government weighs action against Russian hackers over NHS records theft

news.movim.eu / TheGuardian · Friday, 21 June - 19:01

National Crime Agency may take retaliatory measures after Qilin gang steals data covering 300m patient interactions

The government is considering striking back against Russian hackers who have stolen records covering 300m patient interactions with the NHS, including the results of blood tests for HIV and cancer, the Guardian can reveal.

The National Crime Agency (NCA) is weighing up the possibility of taking retaliatory action against Qilin, the Russian-based ransomware gang who put into the public domain early on Friday a huge tranche of highly sensitive NHS records they stole in a cyber-attack on 3 June.

chevron_right

What does the London NHS hospitals data theft mean for patients?

news.movim.eu / TheGuardian · Friday, 21 June - 17:14

Qilin stole information relating to 300m interactions with the NHS, which could be used in future scams

A Russian criminal gang has stolen highly sensitive NHS patient data, including the results of blood tests for HIV and cancer, following a cyberattack this month.

The group posted nearly 400GB of data overnight from a hack of Synnovis, a private/NHS joint venture that provides pathology services such as blood tests and transfusions. Seven hospitals run by two NHS trusts, including Guy’s and St Thomas’ and King’s College, have been affected by the ransomware attack.

chevron_right

Records on 300m patient interactions with NHS stolen in Russian hack

news.movim.eu / TheGuardian · Friday, 21 June - 12:34

Exclusive: health service scrambling to set up helpline after Qilin gang put stolen data into public domain overnight

Russian hackers have stolen records covering 300m patient interactions with the NHS, including the results of blood tests for HIV and cancer, the Guardian can reveal.

The amount and sensitive nature of the data obtained by the Qilin hacking gang has caused alarm among NHS bosses, who are scrambling to set up a helpline to deal with inquiries from what could be a large number of worried patients and also health service staff.