Hackers breached DHS information-sharing network


A key Department of Homeland Security information-sharing database was accessed by an unknown threat actor in recent weeks, potentially exposing sensitive data exchanged between federal, state, local and industry partners, according to two people familiar with the matter.

DHS investigators are probing the intrusion of the Homeland Security Information Network, said both people, who spoke on the condition of anonymity because the incident is sensitive. The hackers’ affiliation and whether any documentation was pilfered from the system are both unclear.

Read more…
Source:  Nextgov


Sign up for the Cyber Security Review Newsletter
The latest cyber security news and insights delivered right to your inbox


Related:

  • Royal Ransomware Actors Rebrand as “BlackSuit”

    August 8, 2024

    The FBI and CISA recently published an update to the joint Cybersecurity Advisory “#StopRansomware: Royal Ransomware.” The updated advisory provides network defenders with recent and historically observed tactics, techniques, and procedures (TTPs) and indicators of compromise (IOCs) associated with BlackSuit variants (previously Royal). FBI investigations identified these TTPs and IOCs as recently as July 2024. See ...

  • Google Illegally Acted As A Search Monopoly, Judge Rules In Major Case

    August 5, 2024

    A federal judge ruled on Monday Google violated antitrust laws in a bid to maintain a monopoly with its search engine—a major loss for Google, capping off the latest antitrust case brought against a U.S. tech giant. D.C.-based Judge Amit Mehta wrote “Google is a monopolist” and “has acted as one to maintain its monopoly,” in ...

  • Chinese cyber attack sparks alert over six year old MS vuln

    August 5, 2024

    The United States Cybersecurity and Infrastructure Security Agency (CISA) has added a Microsoft vulnerability dating back to 2018 to its Known Exploited Vulnerabilities (KEV) catalogue after evidence emerged that it is being used in an attack chain by the China-backed APT41 advanced persistent threat group. CVE-2018-0824 was first addressed by Microsoft in the May 2018 Patch ...

  • Pharma giant Cencora is alerting millions about its data breach

    August 2, 2024

    Cencora has so far notified over a million people around the U.S. that their personal and protected health information was compromised in a data breach earlier this year. The pharmaceutical giant in May said that a February incident resulted in the compromise of patients’ data, which Cencora obtained through partnerships with drug makers it works with ...

  • FBI Warns of Scammers Impersonating Cryptocurrency Exchanges

    August 1, 2024

    The FBI warns of scammers impersonating cryptocurrency exchange employees to steal funds. How the scam works: The scammer contacts the victim via an unsolicited call or message and pretends to be a cryptocurrency exchange employee. The scammer conveys urgency and may claim there is a problem with the victim’s account, or someone is attempting to compromise the victim’s ...

  • OneBlood hit by ransomware attack, tells hospitals to activate critical shortage alerts

    August 1, 2024

    Nonprofit medical organization OneBlood, which plays a crucial role in serving facilities across the Southeastern US, has been targeted in a ransomware attack which caused an IT systems outage, causingover 250 hospitals to activate critical blood shortage protocols. The move disrupted services across multiple US states, with the organization operating at a ‘significantly reduced capacity’ – ...