The US charged two Iranians in a hacking attack which lasted for 34 months. The perpetrators earned millions of dollars by using software that locks files and systems and requires a fee to unlock them. The perpetrators are out of US law enforcement’s reach but the FBI said ‘they can be apprehended if they travel.’
The personal information of 10.6 million guests who stayed at MGM Resorts hotels was hacked last summer. The hack was first reported by ZDNet on Wednesday, which said the stolen information was posted to a hacking forum this week. MGM confirmed the attack took place to the BBC. The data exposed included names, address, and passport numbers for former guests.
Hudson’s Bay Co., the parent company of Saks Fifth Avenue, Saks Off Fifth, and Lord & Taylor announced a data breach has compromised customers’ personal information. A known group of cybercriminals obtained the credit and debit card numbers of more than five million customers. The data was stolen using software installed in-store cash registers.
Hackers have leaked almost 270 GB of FBI and police documents online, covering more than 20 years’ worth of potentially sensitive law enforcement information and intelligence. The documents have been collected under the title “BlueLeaks” and were uploaded to the Distributed Denial of Secrets (DDoSecrets) project, an alternative to WikiLeaks that is popular with so-called hacktivists. The data appears to have been collected following a breach of a web services company in Houston, Texas.
The social media platform Whatsapp has launched a lawsuit against the Israeli-based company NSO Group, accusing the firm of helping government spies hack into around 1,400 mobile phones in 20 countries and steal information. In the lawsuit, filed in federal court in California on Tuesday, the US-based tech firm claimed political dissidents, journalists, human rights activists, diplomats and senior government officials were targeted.
Reports that the national organization which elects Republican congressional candidates was the ‘victim of a cyber intrusion’ were confirmed. The intrusion took place during the midterm campaign season this year. The cyber attack was performed by an ‘unknown entity.’ The National Republican Campaign Committee said the FBI is now investigating the intrusion.
Hackers have gained control of computer servers belonging to the PGA and have demanded a bitcoin ransom, with no amount specified, from the golf association in exchange for returned control. Officials were locked out of critical files related to this week’s PGA Championship. The PGA of America declined to comment, saying it was an ongoing investigation.
It has been learned that Israeli government hackers discovered Russian possession of US National Security Agency hacking tools in 2015, and notified the NSA. This prompted a search which focused on global antivirus firm Kaspersky Lab. Just last month the Department of Homeland Security ordered the removal of Kaspersky software from government computers.
On Friday computer networks of over 150 countries were targeted in a ransomware cyber attack called “WannaCry” that prevents access to data and systems. The attack is considered one of the biggest cybersecurity attacks in the recent history. The main victim, Britain’s healthcare system saw 48 of 248 NHS organizations disrupted by it, “the biggest ransomware attack ever.” The attack caused operations to be canceled and caused widespread disruptions in medical procedures. Many are getting notices to pay a ransom for a decryption key or risk having their files erased. A number of Chinese universities have also been under attack, leaving many unable to access their university theses.
The former secretary of homeland security, Jeh Johnson testifying before the House Intelligence Committee said on Wednesday that under direct orders from the Russian President Vladimir Putin, hackers tried to hack election-related computers in 21 states. He also noted that the Obama administration was aware of Russian meddling in the 2016 presidential campaign but was afraid that acknowledging it would reveal too much about intelligence gathering.