CNN: 5 Chinese nationals among those charged with cyberhacking that victimized over 100 people and companies worldwide

CNN: 5 Chinese nationals among those charged with cyberhacking that victimized over 100 people and companies worldwide. “Five Chinese and two Malaysian international cyberhackers were indicted in federal court on Wednesday for allegedly intruding on over 100 companies and people in the US and abroad through online games to launder ‘millions of dollars,’ the Justice Department announced Wednesday.”

U.S. Department of Veterans Affairs: VA notifies Veterans of compromised personal information

U.S. Department of Veterans Affairs: VA notifies Veterans of compromised personal information. “The U.S. Department of Veterans Affairs (VA) Office of Management today announced a data breach involving the personal information of approximately 46,000 Veterans and actions taken by the department to prevent and mitigate any potential harm to those individuals.”

Bleeping Computer: U.S. spirits and wine giant hit by cyberattack, 1TB of data stolen

Bleeping Computer: U.S. spirits and wine giant hit by cyberattack, 1TB of data stolen. “Brown-Forman, one of the largest U.S. companies in the spirits and wine business, suffered a cyber attack. The intruders allegedly copied 1TB of confidential data; they plan on selling to the highest bidder the most important info and leak the rest. Headquartered in Louisville, Kentucky, the company holds world-known whiskey and scotch brands like Jack Daniel’s, Woodford, Old Forester, Collingwood, Glenglassaugh, and Glendronach; Herradura, El Jimador, and Pepe Lopez tequila; Finlandia vodka, and Sonoma-Cutrer wines.”

Twitter hack: Three charged for alleged roles, including 17-year-old ‘mastermind’ (USA Today)

USA Today: Twitter hack: Three charged for alleged roles, including 17-year-old ‘mastermind’. “Three people, including a 17-year-old Tampa teen, face charges linked to the largest breach ever on Twitter, affecting the accounts of verified figures including Bill Gates and former President Barack Obama. In a statement released Friday, the Hillsborough State Attorney’s Office in Florida said the teen was the ‘mastermind’ behind the hack, which involved posting messages on high-profile Twitter accounts soliciting bitcoin.”

OneZero: The Era of DNA Database Hacks Is Here

OneZero: The Era of DNA Database Hacks Is Here. “On the morning of July 19, hackers accessed the online DNA database GEDmatch and temporarily allowed police to search the profiles of more than 1 million users that were previously not accessible to law enforcement. GEDmatch is a genealogy tool that allows users to upload their DNA profiles generated from genetic testing services like 23andMe, Ancestry, and MyHeritage and search for relatives. It took three hours until GEDmatch became aware of the breach and pulled the site offline completely. Users have to give permission for their profiles to be included in police searches, but the breach overrode privacy settings and made user profiles on the site visible to all other users, including law enforcement officials who use the site.”

Bleeping Computer: Startups disclose data breaches after massive 386M records leak

Bleeping Computer: Startups disclose data breaches after massive 386M records leak. “This week, BleepingComputer was the first to report that ShinyHunters, a threat actor known for data breaches, began to leak the stolen databases of eighteen web sites for free on a hacker forum. Most of the companies targeted by these attacks appear to be startups, with the full list of the 18 data breaches and their updated disclosure status are listed below.”

TechCrunch: Garmin global outage caused by ransomware attack, sources say

TechCrunch: Garmin global outage caused by ransomware attack, sources say. “An ongoing global outage at sport and fitness tech giant Garmin was caused by a ransomware attack, according to two sources with direct knowledge of the incident. The incident began late Wednesday and continued through the weekend, causing disruption to the company’s online services for millions of users, including Garmin Connect, which syncs user activity and data to the cloud and other devices.”

Mashable: Booze delivery app Drizly hit by massive data breach affecting 2.5 million accounts

Mashable: Booze delivery app Drizly hit by massive data breach affecting 2.5 million accounts. “Alcohol delivery app Drizly has been hit with a huge data breach, revealing customers’ email addresses, birthdays, encrypted passwords, and even delivery addresses. You’d hope hackers would at least have the decency to leave our liquor alone amidst this incredibly trying pandemic, but apparently nothing is sacred.”

Mashable: Twitter hackers slid into more DMs than previously known

Mashable: Twitter hackers slid into more DMs than previously known. “The San Francisco-based social media giant has continued to release additional details of the July 15 hack that saw verified accounts compromised and used to push a classic cryptocurrency scam. Today, Twitter announced that more accounts had their direct messages accessed than was previously known.”

EurekAlert: No honor among cyber thieves

EurekAlert: No honor among cyber thieves. “A backstabbing crime boss and thousands of people looking for free tutorials on hacking and identity theft were two of the more interesting findings of a study examining user activity on two online ‘carding forums,’ illegal sites that specialize in stolen credit card information.”

Ars Technica: Ongoing Meow attack has nuked >1,000 databases without telling anyone why

Ars Technica: Ongoing Meow attack has nuked >1,000 databases without telling anyone why. “More than 1,000 unsecured databases so far have been permanently deleted in an ongoing attack that leaves the word ‘meow’ as its only calling card, according to Internet searches over the past day.”

AP: US accuses Chinese hackers in targeting of COVID-19 research

AP: US accuses Chinese hackers in targeting of COVID-19 research. “Hackers working with the Chinese government targeted firms developing vaccines for the coronavirus and stole hundreds of millions of dollars worth of intellectual property and trade secrets from companies across the world, the Justice Department said Tuesday as it announced criminal charges.”

Wired: How to Know If You’ve Been Hacked—and What to Do About It

Wired: How to Know If You’ve Been Hacked—and What to Do About It. “The average person will likely face fewer sophisticated threats than, say, a senior politician, activist or CEO. More high-profile figures may be targeted with phishing emails that are looking to steal secrets from corporate networks or initiate the transfer of large sums of money. You, your friends and your family will likely face different threats: from people you know seeking revenge, or, more likely, crime groups using automated tools to scoop up credentials en masse.”

New York Times: Hackers Tell the Story of the Twitter Attack From the Inside

New York Times: Hackers Tell the Story of the Twitter Attack From the Inside. “Despite global attention on the intrusion, which has shaken confidence in Twitter and the security provided by other technology companies, the basic details of who were responsible, and how they did it, have been a mystery. Officials are still in the early stages of their investigation. But four people who participated in the scheme spoke with The Times and shared numerous logs and screen shots of the conversations they had on Tuesday and Wednesday, demonstrating their involvement both before and after the hack became public.”