The agency uncovered the intrusion on Feb. 17 2023, when it
discovered “a ransomware and data exfiltration event affecting a
standalone USMS system.” That means the hackers stole information from
the computer while planting malicious code capable of encrypting the
data inside.
“The affected system contains law enforcement sensitive information,
including returns from legal process, administrative information, and
personally identifiable information pertaining to subjects of USMS
investigations, third parties, and certain USMS employees,” the agency
says.
Worldwiredlabs.com has been around since at least 2012(Opens in a
new window), offering a software product called “Netwire,” which is
supposedly designed to help IT support staff manage computers remotely.
Before the site was seized, it was offering Netwire for $10 per month or
$60 per year. However, US investigators say the site was a front to sell
the software as a hacking tool to cybercriminals.
Author: U.S. Attorney's Office, Central District of
California. (2023, Mar 9).
A seizure warrant approved by a United States Magistrate Judge on
March 3 and executed on Tuesday led to the seizure of
www.worldwiredlabs.com, which offered the NetWire remote access trojan
(RAT), a sophisticated program capable of targeting and infecting every
major computer operating system. “A RAT is a type of malware that allows
for covert surveillance, allowing a ‘backdoor’ for administrative
control and unfettered and unauthorized remote access to a victim’s
computer, without the victim’s knowledge or permission,” according to
court documents filed in Los Angeles.
The FBI has arrested the alleged founder of a popular cybercriminal
forum that touted data stolen in a hack affecting members of Congress
and thousands of other people and taken the website down, the Justice
Department said Friday.
Author: Independent Living Systems, LLC. (2023, Mar
14).
The types of impacted information varies by individual and could
have included: name, address, date of birth, driver's license, state
identification, Social Security number, financial account information,
medical record number, Medicare or Medicaid identification, CIN#, mental
or physical treatment/condition information, food delivery information,
diagnosis code or diagnosis information, admission/discharge date,
prescription information, billing/claims information, patient name, and
health insurance information.
The FBI has arrested the alleged founder of a popular cybercriminal
forum that touted data stolen in a hack affecting members of Congress
and thousands of other people and taken the website down, the Justice
Department said Friday.
After facing backlash earlier this month, PayPal PYPL -1.5%
rescinded a line in its policy stating that spreading misinformation on
the platform would be subject to a $2,500 fine. Today, the remaining
language leaves users and elected officials demanding more clarity over
how the platform defines fine-worthy speech.
Bumble Bee's first experience of the HPR website.
Additional Information.
What is a
Data Breach? A data breach is a security violation, in which
sensitive, protected or confidential data is copied, transmitted,
viewed, stolen, altered or used by an individual unauthorized to do
so.
What is
Malware? Malware (a portmanteau for
malicious software) is any software intentionally designed to cause
disruption to a computer, server, client, or computer network, leak
private information, gain unauthorized access to information or systems,
deprive access to information, or which unknowingly interferes with the
user's computer security and privacy.
What is
a Payload? In the context of a computer virus or worm, the payload
is the portion of the malware which performs malicious action; deleting
data, sending spam or encrypting data. In addition to the payload, such
malware also typically has overhead code aimed at simply spreading
itself, or avoiding detection.
What is
Phishing? Phishing is a form of social
engineering where attackers deceive people into revealing sensitive
information or installing malware such as ransomware. Phishing
attacks have become increasingly sophisticated and often transparently
mirror the site being targeted, allowing the attacker to observe
everything while the victim is navigating the site, and transverse any
additional security boundaries with the victim.
What is a
Vulnerability (computing)? Vulnerabilities are flaws in a computer
system that weaken the overall security of the device/system.
Vulnerabilities can be weaknesses in either the hardware itself, or the
software that runs on the hardware.
What is an
"Attack Surface"? The attack surface of a software environment is
the sum of the different points (for "attack vectors") where an
unauthorized user (the "attacker") can try to enter data to or extract
data from an environment. Keeping the attack surface as small as
possible is a basic security measure.
What is an
"Attack Vector"? In computer security, an attack vector is a
specific path, method, or scenario that can be exploited to break into
an IT system, thus compromising its security. The term was derived from
the corresponding notion of vector in biology. An attack vector may be
exploited manually, automatically, or through a combination of manual
and automatic activity.