Interpol, African Nations Arrest 1,006 in Sweeping ‘Operation Serengeti’
Interpol led 19 African countries in a massive anti-cybercriminal effort dubbed "Operation Serengeti" that shut down a range of scams and attacks that bled $193 million from 35,000 victims. More than 1,000 people were arrested and more than 134,000 malicious infrastructures shut down ... Read More
Supply Chain Ransomware Attack Hits Starbucks, UK Grocers
Coffee store giant Starbucks was among other organizations affected by a ransomware attack this month on cloud managed service provider Blue Yonder, a Panasonic subsidiary that has more than 3,000 customers. Two UK grocery chains also were impacted ... Read More
Huge Leak of Customer Data Includes Military Personnel Info
EnamelPins, which manufactures and sells medals, pins, and other emblematic accessories, for months left open an Elasticsearch instance that exposed 300,000 customer emails, including 2,500 from military and government personnel. The company, based in California, also has links to China, Cybernews researchers wrote ... Read More
The Cyberthreats from China are Ongoing: U.S. Officials
U.S. officials are pushing back at the ongoing threats posted by Chinese state-sponsored hackers like Volt Typhoon and Salt Typhoon, which have infiltrated critical infrastructure organizations to steal information and preposition themselves in case of a conflict breaking out between the two countries ... Read More
U.S. Agencies Seize Four North Korean IT Worker Scam Websites
U.S. law enforcement agencies seized the websites of four North Korean fake IT worker scams that were uncovered by SentinelOne threat researchers and linked to a larger network of Chinese front companies ... Read More
Black Friday Scammers are Hard at Work: Security Experts
Scammers are using everything from fraudulent deals and fake ads to spoofed websites and brand impersonation to target online shoppers who are gearing up for Black Friday as the holiday buying season gets underway, according to cybersecurity firms ... Read More
EPA IG Office: ‘High-Risk’ Security Flaws in Hundreds of Water Systems
The watchdog for the EPA found that, of 1,062 U.S. drinking water systems it assessed, 97 had "critical" or "high-risk" security flaws and another 211 had less dangerous vulnerabilities, risking threats from stolen data to disrupted service ... Read More
CISA Director Easterly to Leave When Trump Assumes Presidency
Jen Easterly, who took over as CISA director in 2021, will step down in January when Donald Trump takes over as president, creating an uncertain future for the critical cybersecurity agency and the country's larger security posture in an increasingly complex cyberthreat environment ... Read More
NIST Clears Backlog of Known Security Flaws but Not All Vulnerabilities
NIST, the embattled agency that analyzes security vulnerabilities, has cleared the backlog of known CVEs that hadn't been processed but needs more time to clear the entire backlog of unanalyzed flaws ... Read More
Insurance Firm Introduces Liability Coverage for CISOs
National insurance firm Crum and Forster is offering a professional liability program for CISOs who are facing growing regulatory pressures and sophisticate cyberattacks but often are not covered by their organizations' D&O policies ... Read More
