Sen. Ron Wyden (D-Ore.) wants the U.S. government to hold Microsoft responsible “for contributing to ransomware attacks against critical U.S. infrastructure” like Ascension.
The Justice Department has charged a Ukrainian national who is behind ransomware attacks of at least 200 U.S. companies tied to LockerGoga, MegaCortex, and Nefilim.
Read More US Indicts LockerGoga, MegaCortex, Nefilim Ransomware Admin
The affected packages include Chalk and Debug, and one of the contributors to those packages said the compromise was the result of him clicking on a phishing email related to setting up 2FA on his account.
In a scathing letter, Sen. Ron Wyden (D-Ore.) blasted the federal judiciary for its handling of a (second) hack of the federal courts’ case management system earlier this year.
This incident is the latest to stem from an intrusion at Salesloft in which attackers used OAuth tokens to target Salesloft customers’ Salesforce integrations.
We’re optimists, and that’s reflected in the mission statement we coined when we first launched in 2018: Security without fear.
Google researchers discovered the new attacks and are advising all customers to treat any authentication tokens for those integrations as compromised.
Read More UNC6395 Expands Data Theft Campaign to Email OAuth Tokens
