Korea arrests CEO for adding DDoS feature to satellite receivers

December 2, 2024 at 04:14PM South Korean police arrested a CEO and five employees for producing 240,000 satellite receivers with illegal DDoS attack capabilities. The receivers, sold to a foreign company, were used to counter competition. Authorities, alerted by Interpol, seized assets worth $4.35 million. The purchasing company operators remain at large. **Meeting Takeaways:** 1. … Read more

Asda security chief replaced, retailer sheds jobs during Walmart tech divorce

November 14, 2024 at 04:40AM Simon Langley, Asda’s chief information security officer, has left amid Asda’s ongoing transition away from Walmart’s IT systems. Langley joined Asda in December 2021 and will be replaced by Mike Amos. Asda plans to complete its IT separation project by early 2025, with significant staff redundancies and restrictions on contractors. … Read more

The Power of Process in Creating a Successful Security Posture

November 7, 2024 at 10:03AM The commentary emphasizes the importance of establishing replicable and flexible processes in information security. It argues that effective security relies on structured practices, influenced by the practitioner’s experiences and environments, to ensure consistent execution. By integrating stakeholder input and regular evaluations, organizations can enhance security and reduce burnout. **Meeting Takeaways:** … Read more

Iranian Hackers Tried but Failed to Interest Biden’s Campaign in Stolen Trump Info, FBI Says

September 19, 2024 at 11:06AM Iranian hackers attempted to interfere in the 2024 election by sending unsolicited emails with stolen material from Donald Trump’s campaign to people associated with Joe Biden’s campaign. The FBI stated that there’s no evidence of a response from the recipients. Officials have condemned Iran’s interference and highlighted ongoing efforts to … Read more

Name That Toon: Tug of War

September 16, 2024 at 01:03PM Submit a clever cybersecurity-related caption by Oct. 16, 2024, to [email protected] with the subject “Dark Reading September Toon” or via X, Facebook, and LinkedIn. Congrats to last month’s winner, Renen Wasserman. Notable entries included “Blindfolded and Breached: The Modern Cybersecurity Nightmare” and “This 5th level of multi-authentication may be taking … Read more

French Authorities Charge Telegram CEO with Facilitating Criminal Activities on Platform

August 29, 2024 at 01:39AM French prosecutors have charged CEO Pavel Durov with criminal activity on the messaging platform Telegram. He is accused of facilitating child sexual abuse materials, organized crime, illicit transactions, drug trafficking, and fraud. Durov has been released on a €5 million bail but is under investigation and prohibited from leaving the … Read more

950,000 Impacted by Young Consulting Data Breach

August 28, 2024 at 06:54AM Young Consulting, a software solutions provider, has notified over 950,000 individuals of a data breach compromising their personal information. The incident was discovered on April 13, prompting an investigation with the assistance of a cybersecurity forensics firm. The company is now offering impacted individuals one year of free credit monitoring … Read more

Hackers linked to $14M Holograph crypto heist arrested in Italy

August 19, 2024 at 12:36PM Italian police arrested four suspected hackers, responsible for stealing $14 million worth of cryptocurrency from Holograph, a blockchain tech firm. The individuals were living luxuriously in Italy for weeks before their capture. Law enforcement, working with French authorities, tracked the group’s lavish lifestyle, leading to the arrest of two suspects … Read more

Assume Breach When Building AI Apps

August 19, 2024 at 11:13AM The author highlights the increasing impact of AI in security analysis, acknowledging its efficiency but also cautioning about AI jailbreaking challenges. They discuss conflicting views on disclosure and suggest assuming AI jailbreaks are trivial, recommending focus on monitoring and rapid response rather than attempting to create unbreakable systems. The meeting … Read more

‘Error’ in Microsoft’s DDoS defenses amplified 8-hour Azure outage

July 31, 2024 at 09:03AM Microsoft admitted that its defensive implementation exacerbated an Azure instability due to a DDoS attack, with an error in defense amplifying the impact. Despite their global defense strategy, the response to the attack did not go well, impacting various services. Microsoft’s responses and reviews are expected in the coming weeks. … Read more