Attivo Networks has named FireEye veteran Tony Cole as its CTO as the company looks to boost its presence in the government, financial services, and oil and gas verticals. The Fremont, Calif.-based vendor brought Cole on board to help Attivo deliver more clarity to the market around how its platform is differentiated from competitors. Cole said he plans to take a deep dive into what the Attivo platform does and the capabilities it provides to ensure it’s continually growing.
A hacker is selling stolen credentials that purportedly give access to servers of the US Navy, Centers for Disease Control, US Postal Service, and other US government sites.
Listings for the accounts were found recently by Tech Insider on a dark web marketplace called The Real Deal, a popular site many cyber criminals use for buying and selling everything from illegal drugs to zero-day software exploits. It’s unclear when the postings were made, since the site offers no dates for when sellers create their listings.
Some of the U.S. Library of Congress’s websites are currently inaccessible as the result of a denial-of-service attack, the Library of Congress announced Monday.
The cyberattack was originally detected on July 17, a spokesperson told FedScoop. The attack has also caused other websites hosted by the LOC, including the U.S. Copyright Office, to go down. Library of Congress employees were reportedly unable to access their work email accounts or visit internal websites.
“The Library is working to maintain access to its online services while ensuring security,” the spokesperson said.
A hacking group called the Turk Hack Team is taking credit for a shutdown of the Library of Congress website and hosted systems including Congress.gov, the Copyright Office, Congressional Research Service and other sites.
The group claimed credit on an online message board where users go for updates on the availability of websites.
The attack was launched July 17, in the midst of Turkey’s response to the military coup targeting the elected government of President Recep Tayyip Erdogan. Prominent Turkish officials have accused the U.S. of fomenting the coup; Secretary of State John Kerry issued a stern denial of such accusations.
A sustained distributed denial-of-service attack is being blamed for dropping Congress’ central website from the web for the past three days.
The Library of Congress (loc.gov) and the US Copyright Office (copyright.gov), which are operated on the same servers, also struggled to stay online.
The Library of Congress said in a tweet that technical staff “are working hard to restore full service”, and apologized for the inconvenience.
As of Wednesday morning, the sites appeared to be up and running.
The US Internal Revenue Service (IRS) has announced it is retiring the e-Filing PIN system following a new wave of cyber-attacks after crooks previously abused the same system last February.
In a statement on the IRS website, the agency says it was planning to eliminate the e-File PIN system later this year, but it decided to expedite its decision after they detected another set of cyber-attacks against its online tool.
Hackers abused the tool last February
Last February, the IRS announced it detected an automated bot attack during which unknown crooks tried to illicitly generate e-Filing PINs for over 464,000 Americans. The IRS admitted that crooks got access to 101,000 e-Filing PINs.
The IRS uses the e-Filing PIN system to generate a unique PIN that Americans can use on their Form 1040 to file for tax returns. The PIN is not mandatory but only serves as an alternative to authenticating the document. US citizens can also use their prior-year adjusted gross income from copies of their previous year tax returns.
As part of a years-long cyber attack, North Korean hackers have allegedly stolen 42,000 materials from South Korean organizations and government agencies, including blueprints for F-15 fighter jet wings.
The hacking began in 2014 and was first detected in February, according to South Korea’s police cyber investigation unit. Reuters reports that more than 40,000 of the materials stolen were defense-related.
However, none of the defense-related materials were secret, and there was no security breach, said a Defense Ministry official. Representatives for the two organizations affected most recently, including Korean Air Lines, also stated that the leaked documents were not classified.
The U.S. Federal Reserve detected more than 50 cyber breaches between 2011 and 2015, with several incidents described internally as “espionage,” according to Fed records.
The central bank’s staff suspected hackers or spies in many of the incidents, the records show. The Fed’s computer systems play a critical role in global banking and hold confidential information on discussions about monetary policy that drives financial markets.
The cybersecurity reports, obtained by Reuters through a Freedom of Information Act request, were heavily redacted by Fed officials to keep secret the central bank’s security procedures.
It may not surprise you to see headlines like this in the news, “Foreign Hackers May Be Targeting Presidential Candidates: Spy Chief”. What however may be surprising is the inherent risk to voters, driven by the internet connected world that we live in today.
Well into the election season and heading to the big finale in November, both parties want to make sure there is a big turnout at the polls. But before that can happen there has to be a sizeable number of registered voters. I’m registered and I imagine you are too, but are we putting ourselves at risk?
The IT department of the U.S. House of Representatives has blocked access to Yahoo Mail and the Google App Engine platform due to malware threats.
On April 30, the House’s Technology Service Desk informed users about an increase in ransomware related emails on third-party email services like Yahoo Mail and Gmail.