@PogoWasRight@infosec.exchange cover
@PogoWasRight@infosec.exchange avatar

PogoWasRight

@PogoWasRight@infosec.exchange

Blogger/journalist at databreaches.net and pogowasright.org.

#databreach #ransomware #dataprotection #privacy #cybersecurity #transparency #HIPAA #F1 #coffee

Posts have not been evaluated by the Food and Drug Administration or my dogs, who remind everyone to use the Oxford comma.

The header pic is my beautiful Senna, a northern husky we rescued in 2018.

This profile is from a federated server and may be incomplete. For a complete list of posts, browse on the original instance.

PogoWasRight , to random
@PogoWasRight@infosec.exchange avatar

Japan Man Arrested for Creating Virus Using Generative AI Systems; ‘I Thought I Could Do Anything if I Asked AI’:

https://japannews.yomiuri.co.jp/society/crime-courts/20240528-188598/

#AI #generative #artificialintelligence #ransomware #malware

PogoWasRight , to random
@PogoWasRight@infosec.exchange avatar

I haven't posted this on my site yet, but there have been a few developments likely related to the seizure of . As a preview, recall that Kantonspolizei Zürich were one of the cooperating entities in the takedown and that the seizure notice had two avatars behind bars: one was Baphomet, the other was a default avatar that has been used by a number of people, but is not the avatar of the forum owner ShinyHunters.

Law enforcement has yet to issue any press release or answer any questions about the takedown.

Developments:

was notified by that they had received a court order ordering CF to cancel BF's account. CF complied with the court order. (Source: ShinyHunters shared text copy of CF communication with DataBreaches)

CF did not tell ShinyHunters what court had ordered that, so Shiny asked them to provide a copy of the order if there was no gag order with it, or to at least say what court ordered it so it could be appealed. They have not gotten a response from CF as yet to that request.

On May 15, the same day as the takedown, Switzerland Services sent customers a notice stating, in part, that "all our network equipment and servers in Switzerland were confiscated yesterday by Swiss police due to a local prosecutor order and therefore all services in Switzerland are currently unavailable and all data can de considered as lost and compromised."

ShinyHunters had previously told DataBreaches that BF has used servers and services in Switzerland.

ShinyHunters has also claimed to be in Switzerland. DataBreaches does not know if that is true or not.

I'll have this up on databreaches.net soon with the full message from Switzerland Services.

@brett @DarkWebInformer @arstechnica @campuscodi @zackwhittaker

PogoWasRight , to random
@PogoWasRight@infosec.exchange avatar

Years later, admits data were not encrypted before its 2018 . Now what?

Did they get insurance reimbursement because their claim said the data had been encrypted? Will find they made a material misrepresentation to consumers and investors?

Will people who didn't try to sue them claim they had relied on Marriott's statement and they now want to sue them?

Lots of questions, including when did they first find out that the data had not been encrypted and why didn't they find out and disclose it sooner?

Great reporting by Evan Schuman:
https://www.csoonline.com/article/2096365/marriott-admits-it-falsely-claimed-for-five-years-it-was-using-encryption-during-2018-breach.html

  • All
  • Subscribed
  • Moderated
  • Favorites
  • random
  • test
  • worldmews
  • mews
  • All magazines