Twitter, YouTube, Instagram Crippled By Massive Outages

Prajeet Nair • February 8, 2023

Three of the planet's largest social media platforms suffered outages Wednesday, blocking some users at Twitter, Instagram and YouTube from accessing their accounts. At Twitter, many users received a message Wednesday saying they were "over the daily limit" and were unable to post.

Application Security

Mergers and Acquisitions in Healthcare: The Security Risks

Latest

Fraud Management & Cybercrime

Russian Hackers Suspected of Accessing Email of British MP

Akshaya Asokan • February 8, 2023

Russian intelligence likely gained access to a Scottish nationalist politician's private email inbox via a phishing attack. Stewart McDonald, a well-known supporter of Ukraine, said his messages may become part of a disinformation campaign. His official inbox was not breached.

Fraud Management & Cybercrime

Ontario Hospital Among Latest Healthcare Cyberattack Victims

Marianne Kolbasuk McGee • February 8, 2023

An Ontario hospital says it is operating under "Code Grey" as it deals with a cybersecurity incident that occurred over the weekend. Meanwhile, hospitals in Maryland and Florida say they are still recovering from cyberattacks that hit last week and continue to affect a variety of patient services.

Cloud Security

E-Commerce Shops: 12% Are Publicly Exposing Private Backups

Mathew J. Schwartz • February 8, 2023

Researchers at Sansec warn that 12% of e-commerce sites they studied publicly expose private backups and that hackers are actively scanning for them. Such backups can give attackers customer data, passwords and other details required to gain remote, administrator-level access to an environment.

Fraud Management & Cybercrime

Ransomware Attack Disrupts Operations at MKS Instruments

Prajeet Nair • February 8, 2023

A Massachusetts maker of semiconductor manufacturing equipment says it halted operations at some facilities following a ransomware attack. A market analysts tells Information Security Media Group a slowdown in semiconductor demand means the attacks' short-term effects will be limited.

Endpoint Security

Hong Kong Police Disrupt International Phishing Syndicate

Jayant Chakravarti • February 8, 2023

Hong Kong police and Interpol disrupted an international criminal operation that planted banking Trojans through SMS phishing messages that appeared to originate from a legitimate source. Hong Kong police told the South China Morning Post the gang appears to be based overseas.

Governance & Risk Management

Lawsuit: Cedars-Sinai Sharing Patient Data From Websites

Marianne Kolbasuk McGee • February 7, 2023

Cedars-Sinai Medical Center in Los Angeles has joined a growing list of organizations being sued for allegations that its use of website tracking codes is unlawfully sharing individuals' personal and health information to third-party social media and marketing companies.

Governance & Risk Management

Claudia Plattner Picked as New Head of Germany's BSI

David Perera • February 7, 2023

The German government selected a new president for the Federal Office for Information Security, better known as BSI. Claudia Plattner, currently serving as the European Central Bank's director general of information systems, is set to lead the agency starting on July 1.

Fraud Management & Cybercrime

Ryuk-Linked Russian Pleads Guilty in US Court

David Perera • February 7, 2023

Denis Mihaqlovic Dubnikov, 30, pleaded guilty in U.S. federal court to conspiracy to commit money laundering. Federal prosecutors say the Russian national laundered more than $400,000 for the Ryuk ransomware-as-a-service gang. He faces up to 20 years in prison and a potential fine of $500,000.

Video

Why You Need to Wake Up to API Security Vulnerabilities

Anna Delaney • February 7, 2023

APIs represent the best and worst of times - "massive amounts of business value, but massive amounts of unmitigated risk," says Richard Bird, CSO, Traceable AI. In the past year, misconfigured or error-prone APIs resulted in high-profile breaches at Twitter and T-Mobile. He sees more on the horizon.

Cybercrime

European Police Shut Down Encrypted App Used by Criminals

Akshaya Asokan • February 7, 2023

Police in multiple European countries carried out raids against the operators and users of the Exclu encrypted chat app, arresting four dozen individuals. German authorities began investigating the app following a 2019 raid on the Cyberbunker web hosting facility.

Endpoint Detection & Response (EDR)

Leveraging AI for EDR Solutions

Suparna Goswami • February 7, 2023

The aim of AI in EDR solutions is to streamline the process to ensure humans are able to consume and understand the data in order to respond well, says Serge Woon, worldwide tech sales leader and co-founder at ReaQta, part of IBM. In this roundtable preview, he explains why AI is so crucial to EDR.

Business Continuity Management / Disaster Recovery

Microsoft Experiences Second Major Cloud Outage in 2 Weeks

Mathew J. Schwartz • February 7, 2023

Microsoft suffered its second major outage in less than two weeks, as users in North America and beyond were left unable to send, receive or search emails via Outlook.com and unable to access some additional functionality, including calendar APIs. Microsoft blamed unspecified "recent changes."