SEC enforcing cyber security disclosures following SolarWinds cyber attack

According to two sources familiar with an SEC investigation, the regulator has opened an investigation into last year’s SolarWinds cyber attack; the probe is focusing on whether failed to disclose that they had been affected by the hack. Last week, the SEC sent investigative letters to a number of public issuers and investment firms requesting voluntary…

SolarWinds hack was the largest and most sophisticated cyber attack to date: Microsoft president

In a statement, Microsoft Corp’s President Brad Smith said, the SolarWinds hacking campaign that used the U.S. tech company as a springboard to compromise many U.S. government agencies is “the largest and most sophisticated attack the world has ever seen”. The hacking campaign, identified in December 2020, was allegedly orchestrated by China and Russia, had…

Alleged hacker puts up Tokopedia’s user details for sale on darknet

Indonesia’s largest e-commerce platform, Tokopedia said, it is investigating an attempted cyber attack and claims that details of millions of its users had been leaked online. “We found that there had been an attempt to steal data from Tokopedia users,” said Tokopedia’s spokesman. “However, Tokopedia ensures that crucial information such as passwords remains successfully protected…

Foreign state-backed hackers targeting U.S. COVID-19 research: FBI

According to a senior cybersecurity official with the Federal Bureau of Investigation, foreign government hackers have managed to break into companies which are conducting research into treatments for COVID-19 – the respiratory illness caused by the coronavirus. During an online panel discussion hosted by the Aspen Institute, FBI Deputy Assistant Director Tonya Ugoretz disclosed to…

DOJ indicts 4 members of China’s People’s Liberation Army for Equifax hack

In September 2017, credit reporting agency Equifax decided to come clean: it had been hacked and personal sensitive information of 143 million, which was later revised to 147.9 million, U.S. citizens had been compromised. The stolen personal data included names, date of birth, and Social Security numbers. Earlier this week on Monday, the U.S. Department…

Defense data may have been stolen in cyberattack on Mitsubishi Electric Corp: Japan Defense Ministry

In a statement, Japan’s defense ministry stated, a cyber attack on Mitsubishi Electric Corp, a major supplier of the country’s defense and infrastructure systems, has led to a breach of sensitive data on defense equipment. The potentially stolen data included requirements for defense equipment that Japan’s Defense ministry specified for contract bidders in October 2018,…

Thallium hacking group stole nuclear related info: Microsoft

In a statement, Microsoft Corp disclosed, a hacking group called “Thallium” has taken control of web domains to steal nuclear related data. In a blog post, Microsoft stated, Thallium, believed to be operating from North Korea, targeted government employees, university staff members, think tanks, and individuals working on nuclear proliferation issues, among others. Most of…