Hackers have stolen over 120,000 files from San Francisco's Transit Police. Several files have information on multiple cases of child abuse and contain the victims' names. More: - The information has reportedly been leaked in online forums.
- The leak also contains the names and driver's license numbers of contractors who have worked on BART (Bay Area Rapid Transit System) projects, police reports that contain names of different suspects for various crimes, and employment documents for prospective officers.
- A ransomware attack is believed to be the threat vector in this case, while officials have yet to give any technical details regarding the leak.
| |
Hackers have stolen the data of almost 500,000 people from Maternal & Family Health Services. The hackers behind the campaign remain unknown so far. More: - Hackers have stolen information such as:
- name,
- address,
- date of birth,
- driver's license number,
- Social Security number,
- usernames and passwords,
- health insurance and medical information,
- and financial information.
- Maternal & Family Health Service, a non-profit based in Pennslyvania, first announced the breach in April 2022 but has only now sent notifications to the affected individuals.
- Hive ransomware group has taken credit for this cyberattack, although the claims have not been confirmed by researchers so far.
- This case has been treated by the Maine Attorney General.
| |
 A message from LACEWORK Discover cloud insights and harden your security posture In the latest installment of the Cloud Threat Report series, Lacework Labs covers the significant increase in efficiencies used by cybercriminals. Get insights into these trends that cover how: - Attackers are automating key discovery and exploits, taking advantage of momentary mistakes
- Simple mistakes turn into misconfigurations that attackers use to compromise your cloud identity infrastructure
- Vulnerabilities continue to stick around for months (sometimes even years) and attackers quickly exploit any new vulnerabilities
- Cryptojacking continues to be a staple in cybercriminal tool belts
Discover detailed intelligence about ongoing infrastructure compromise activities and best practices for hardening your cloud security posture. Read the Lacework Labs Cloud Threat Report, Vol. 4 today. get the report
| |
A hacker is claiming to have gained access to Telegram's servers and is offering to sell this access for $20,000. According to the threat actor, this access is unlikely to be disrupted. More: - The seller claims that the price is non-negotiable due to the fact that they believe it is unlikely to be disrupted by Telegram.
- If someone were to have access to Telegram's internal systems, they could steal sensitive user information and exfiltrate log data.
- A potential breach would harm Telegram's reputation as a reliable chat platform, as the company has seen continued growth in recent years and has reached over 700 million monthly users.
- Researchers have disputed the claim, saying that similar offers on the dark web are not a rare occurrence and that separating real ones from those that are false is very difficult.
| |
Multiple banks in Denmark, including the Central Bank, have been hacked by a DDoS campaign. The attack shut down the banks' websites for a brief period. More: - The cyberattack affected seven private banks and The Central Bank of Denmark.
- Two of the country's largest private banks, Jyske Bank and Sydbank, were breached, but neither company had its information stolen.
- All eight affected banks claim that their services are now back to normal, while the threat actor responsible for this hacking campaign has not been tracked yet.
| |
| A message from MASTERWORKS Investment Platform Goes 9 for 9 with Profitable Exits in 2022 Last year was a bloodbath for the average retail investor. Adjusting for inflation, the S&P 500 plummeted 25%, while a Total Bond index declined 20.3% – the worst results in nearly 100 years. Despite this dismal backdrop, one investment platform saw its best year ever. All 11 of their exits have been profitable, 9 of those in 2022, with the last 3 realizing +13.9%, +35.0%, and +10.4% net returns each. The formula to their successful track record lies in the strength of the art market through downturns. Even through the dotcom bubble, and Great Financial Crisis, the art market was resilient. By qualifying every offering with the SEC, Masterworks makes it easy for retail investors to stake their claim in the high-end art market. Inside readers can skip the waitlist to join here. Skip The Waitlist See important Regulation A disclosures.
| |
Over 100 Siemens PLCs have been found vulnerable to being hacked. Siemens claims it won't release patches for the bug and urged customers to control who has physical access to the PLCs. More: - If a threat actor were to have physical access to the PLCs, they could gain unauthorized control by overriding the system's existing firmware.
- The flaw is tracked as CVE-2022-38773 and has a CVSS score of 4.6.
- Siemens stated that although it does not plan on releasing security updates, its new devices will have features that address issues like this.
- Researchers added that hardware devices like these are unchangeable, which is why any potential security flaws would have to be fixed only in hardware updates.
| |
Quick Hits - Delight your family, guests, or team like never before with Vestaboard, the award-winning messaging display. Learn more.*
- Tesla is offering a $600,000 prize for hackers that are capable of breaching its security protocol and finding flaws that affect its vehicles.
- The Active Directory Domain in a recent IcedID Malware attack was activated only 24 hours after the initial compromising impact, highlighting the speed at which recent Cobalt Strike attacks are being deployed.
- Cisco has warned its users that it is not going to release a patch for the CVE-2023-20025 security flaw due to the fact that the affected devices have reached their end-of-life.
- The National Cyber Security Centre has released a public statement regarding a cyberattack that affected Royal Mail Group, claiming that the case is being investigated and it will publish more details once the full scope of the breach is analyzed.
- There’s a new email automation strategy that’s helping mailers double, even triple, their email open rates.*
*This is sponsored content.
| |
Upcoming events at Inside: - January 12 - AMA with Gun.io - Building and managing software development teams w/ Deividi Silva (Watch On Demand)
- January 13 - AMA with LinearB - Improving workflow for developers w/ Ori Keren (Watch On Demand)
- January 16 - Inside Marketing Coffee Break (Register Here)
- January 18 - Inside Interview with Lacework - 4 Common Attack Paths in Cloud Security (Register Here)
- January 25 - Amanda Natividad speaks on zero-click content, how to measure it, and other trends to keep tabs on in 2023. (Register Here) *
- January 26 - Growth Experimentation Workshop: From Strategy to Process by GrowthHackers.com (Register Here)
- February 23 - Startups Book Club, February 2023 (Join The Club)
*This is a sponsored listing.
| |
 |  | Arbër is an Inside writer who also has experience in entrepreneurship. He has experience covering Consumer Tech, Venture Capital, NFTs, Crypto, etc. Arbër holds a Bachelor's degree in Business from XAMK University in Finland. When he is not reading(and writing) business news, he chooses to watch sports or anime...and then read news about sports or anime. |   | | Editor | Aaron Crutchfield is based in the high desert of California. Over the last two decades, he has spent time writing and editing at various local newspapers and defense contractors in California. When he's not working, he can often be found looking at the latest memes with his kids or working on his 1962 and 1972 Fords. | |
| |
Discover how to invest in the recession-resistant art market with 10-30% historical returns with Masterworks.
| |
