News

A hacker who goes by the name "Ryushi" has purportedly obtained personal identifying information of up to 400 million Twitter Accounts, and if asking for $200,000 before they delete it, according to the BBC.

"I'm selling data of +400 million unique Twitter users that was scraped via a vulnerability," the threat actor posted on a hacking message board on December 23. "This data is completely private and it includes emails and phone numbers of celebrities, politicians, companies, normal users, and a lot of OG and special usernames.

Suffolk University students and alumni received notice this week that a "cybersecurity incident" which took place over the Summer included the obtaining of personal identifying information.

"We determined on November 14, 2022 that certain of your personal information was impacted as a result of the incident," said the letter sent to those affected by the breach.

It's always a good idea to routinely change your passwords, especially if you find yourself falling into the habit of using the same login password on every website you visit. Unfortunately for a number of users of the sports-betting website DraftKings, they learned this the hard way after the website suffered a Credential Stuffing account.

Last month, the State of Massachusetts made multiple announcements regarding Cybersecurity in the state. Firstly, they announced that more than $2.6 million has been allocated to fund the state's first two Cyber Security Operations Centers (SOC) and Cyber Ranges, which will be located at Bridgewater State University as well as Union Station in Springfield.

There was an extremely dangerous Ransomware incident last month in the state of Texas, as a cyberattack on EMS and ambulance company MedStar hindered their ability to respond to emergencies.

According to CBS News, the company detected "an active attack" that was targeted at their network.

According to multiple cybersecurity firms, Ransomware groups are shifting their methods and corrupting files, to make recovery from an attack even harder.

Symantec found that an affiliate of a known ransomware group had started to use a tool, Infostealer.

Meta, formerly known as Facebook, revealed last month that they have identified and worked to take down "more than 400 malicious Android and iOS apps that target people across the Internet to steal their Facebook login information."

According to a blog post by their security team, these apps come in the form of "fun" apps, such as music players or cartoon editors, in order to trick unsuspecting users into downloading them.

A teenager has hacked both rideshare giant Uber and video game developer Rockstar Games back-to-back in what might be two of the highest-profile hacking incidents in 2022. On Thursday, September 15, employees at Uber found a message on their company's Slack channel, which allows instant text communication between teams.

A new report released this month by MIT Sloan in collaboration with Proofpoint surveyed 600 board members at organizations across 12 countries about their thoughts on cybersecurity preparedness.

While 75% of respondents said that cybersecurity risks and impacts are understood by their boards, the report states that "Just under two-thirds of board members believe that their organization is at risk of a material cyber attack.