hackers

Microsoft is offering an update into the hack it first reported in January—and things aren’t looking good. The tech giant says state-sponsored hackers, backed by Russia, are still trying to access its systems and successfully stole “some of the company’s source code repositories and internal systems.”The hackers, who call themselves Midnight Blizzard or Nobelium, were also responsible for the SolarWinds attack that compromised the Treasury and Commerce Departments in December 2020.“In recent weeks, we have seen evidence…

Russian hackers keep trying to infiltrate Microsoft, the company These hacks follow a of last year, in which state-sponsored agents obtained the emails of Microsoft’s senior level managers. An internal investigation led by Microsoft identified the hackers in both instances as a Russian group called Midnight Blizzard.It looks like Midnight Blizzard has gotten bolder in its approach. Last year’s attack seemed to prioritize the collection of email addresses, but this most recent attack finds the group repeatedly attempting…

The U.S. National Security Agency has confirmed that hackers exploiting flaws in Ivanti’s widely used enterprise VPN appliance have targeted organizations across the U.S. defense sector. NSA spokesperson Edward Bennett confirmed in an emailed statement to TechCrunch on Friday that the U.S. intelligence agency, along with its interagency counterparts, is “tracking and aware of the broad impact from the recent exploitation of Ivanti products, to include of the U.S defense sector.” “The…

For the past week-and-a-half, UnitedHealth’s Change Healthcare business has been undergoing a cyberattack, which has impacted the ability of some pharmacies to fill prescriptions in a timely manner. Now the company is finally addressing who the enemy is.The Blackcat ransomware group—which also goes by ALPHV or Noberus—has been identified as the party responsible for the hack, Change Healthcare confirmed Thursday.“Our experts are working to address the matter and we are working closely with law enforcement and leading…

Cybercrime cops still celebrating the takedown of LockBit should put the champagne back on ice because the Russia-linked hackers have re-emerged — and declared support for Donald Trump. Often described as the “world’s most active ransomware group,” LockBit was disrupted last Tuesday by an international coalition of law enforcement agencies. According to Europol, the task force infiltrated the gang’s “primary platform and critical infrastructure.” Members of Lockbit were also arrested and…

A big leak of data from a Chinese cybersecurity firm has revealed state security agents paying tens of thousands of pounds to harvest data on targets, including foreign governments, while hackers hoover up huge amounts of information on any person or institution who might be of interest to their prospective clients.The cache of more than 500 leaked files from the Chinese firm I-Soon was posted on the developer website Github and is thought by cybersecurity experts to be genuine. Some of the targets discussed include Nato…

A massive data leak from a Chinese cybersecurity firm has offered a rare glimpse into the inner workings of Beijing-linked hackers.Analysts say the leak is a treasure-trove of intel into the day-to-day operations of China’s hacking programme, which the FBI says is the biggest of any country. The company, I-Soon, has yet to confirm the leak is genuine and has not responded to a request for comment. As of Friday, the leaked data was removed from the online software repository GitHub, where it had been posted.From staff…

Over the weekend, someone posted a cache of files and documents apparently stolen from the Chinese government hacking contractor, I-Soon. This leak gives cybersecurity researchers and rival governments an unprecedented chance to look behind the curtain of Chinese government hacking operations facilitated by private contractors. Like the hack-and-leak operation that targeted the Italian spyware maker Hacking Team in 2015, the I-Soon leak includes company documents and internal communications, which show I-Soon was…

Security experts are warning that a pair of high-risk flaws in a popular remote access tool are being exploited by hackers to deploy LockBit ransomware — days after authorities announced that they had disrupted the notorious Russia-linked cybercrime gang. Researchers at cybersecurity companies Huntress and Sophos told TechCrunch on Thursday that both had observed LockBit attacks following the exploitation of a set of vulnerabilities impacting ConnectWise ScreenConnect, a widely used remote…

When it comes to cyberattacks, celebrities have a huge target on their backs.  Just consider the news at the end of 2023 where Rhysida, the infamous hacking group, announced it had attacked King Edward VII’s Hospital, a private health institution in London. This is bad enough by itself, but what really elevated this news from “another day, another attack,” was the fact the hackers claimed to have obtained sensitive medical data on the British Royal Family. The King Edward VII Hospital has…