The Record

A large cache of sensitive data about people who applied for legal aid in the U.K. is potentially in the possession of cybercriminals, the government said.

The January 2024 attack resulted in fraudulent posts on the SEC’s account that altered the market value of bitcoin.

Some of the suspects allegedly “cold-called victims and used social engineering to convince them their accounts were the subject of cyberattacks and the enterprise callers were attempting to help secure their accounts,” according to the DOJ.

Sen. Mark Warner said the Office of Personnel Management must maintain ID protection services for millions of people whose data was stolen in a massive 2015 data breach at the agency.

The Brussels Court of Appeal ruled Wednesday that the use of tracking by online advertisers relies on an inadequate consent model and is illegal in Europe.

Republican Rep. Don Bacon said that a pause in U.S. offensive cyber operations against Russia earlier this year lasted only one day as part of the Trump administration's negotiations with the Kremlin on ending the war in Ukraine.

Authorities in the republic of Chuvashia confirmed attackers targeted software used to manage patient records and medical histories.

Despite support from the Trump administration, reauthorization of the legislation faces some obstacles, including a tight timeline and the fact that it is unclear who in House and Senate leadership will champion the legislation at a time when many other urgent competing bills are vying for attention.

Senate Intelligence Committee Chairman Tom Cotton and 16 other GOP lawmakers wrote this week to Commerce Secretary Howard Lutnick, saying his department should block future sales of TP-Link’s popular small office/home office (SOHO) internet routers.

His remarks echo recent comments Commissioner Melissa Holyoak made in her personal capacity during a speech at a privacy conference, but are a more significant indicator of the agency’s new position on the issue given that he was speaking to lawmakers on behalf of the agency.

Dave Luber, a 38-year NSA veteran, is taking advantage of the early retirement option being offered by the agency as it aims to shed 8 percent of its civilian staff.

In a deal set to close later this year, cybersecurity giant Proofpoint is acquiring German firm Hornetsecurity, which specializes in protecting companies from risks associated with Microsoft 365.

About a third of the case file archive of Pravosudiye — Russia's national electronic court filing system — was deleted in a previously reported cyberattack, auditors said. A pro-Ukrainian group has claimed the intrusion.

Russia-linked hackers known as APT28 mainly targeted entities in Ukraine, Bulgaria and Romania, but governments in Africa, South America and other parts of Europe were also affected.

Cryptocurrency trading platform Coinbase said an attacker tried to extort the company for $20 million over stolen data. "We said no," Coinbase said, and instead offered that amount as a bounty.

An network intrusion at Nova Scotia Power in March led to a breach of sensitive customer data, the Canadian utility said in an update about the incident.

"US retailers should take note" of recent cyberattacks on British companies, according to Google's Threat Intelligence Group, as the financially motivated collective known as Scattered Spider appears to be connected.

In an 8-K filing with federal regulators, Nucor said the incident involved “unauthorized third party access to certain information technology systems” but did not explain further.

A cyberattack first detected over Easter weekend has reportedly already cost Marks & Spencer more than £60 million.

Russian authorities restricted mobile internet access from May 5 to May 9, citing security concerns related to the preparation and celebration of the Victory Day parade in Moscow.