Tag - Hack
Apple has confirmed reports that it will not sue the FBI in an effort to get the agency to reveal the method it used to crack into the San Bernardino iPhone 5c, saying whatever method the FBI ended up using will have "a short shelf life," as the company has made significant improvements to security in later iPhones and operating system updates, and users upgrade their iPhones routinely. In a related case brought by the US Department of Justice in New York, however, Apple may require the FBI to reveal the method in order for the agency to prove in court that its claim that the hack doesn't work on newer iPhones is true.
Plex is under threat from a hacker, attempting to blackmail the service by holding some of its customer data up for ransom. The streaming media software developer's forums have been breached, with the hacker demanding bitcoin from the company, otherwise the attacker will release all the acquired customer data, as well as other software and files picked up in the intrusion for all to see.
A counter-hack against the Lizard Squad hacking group's distributed denial of service (DDoS) tool LizardStresser has resulted in a customer data theft. Details of 14,241 users of the disruptive hacking tool have been stolen from the group's site, including user names, passwords, and other data stored in plain text, and has now been posted online.
North Korea has verbally fired back at allegations that it is behind the Sony Pictures attack. Calling the recent FBI statement identifying the country as the culprit "groundless slander," the country is demanding a joint investigation into the hack, with the country's experts and US law enforcement working side-by-side. If the US should refuse, North Korea's foreign ministry promised "grave consequences," presumably to US interests. The government of North Korea continues to deny that they hack, which has caused an estimated $100 million of damage to Sony Pictures, not including less tangible problems, can on the country.
Hackers behind the Sony Pictures intrusion have made a more public demand for the company to stop the release of an upcoming film. The demand from the "Guardians of Peace" is accompanied by another large release of internal data, with information about aliases used by celebrities, as well as more contact information for the stars and their assistants.
The Sony Pictures hack attack has taken a dark turn. A mass email in broken English went out to employees whose data was stolen by the so-called "Guardians of Peace," demanding that recipients return the email, or "not only you but your family will be in danger." In the email, the attackers are demanding that employees "make your company behave wisely" in order to stop future incidents by the hack group.
The Sony Pictures data breach may be bigger than originally believed, as reports claim a lot more people than the 6,000 employees have been affected. Personal data including Social Security numbers for more than 47,000 current and former employees were apparently involved in the leak, including information relating to famous celebrities such as Sylvester Stallone and Rebel Wilson.
Despite previously calling a movie soon to be released by Sony Pictures an "act of war," North Korea has denied any involvement in the seemingly-ongoing studio hack. An anonymous diplomat from the country has refuted state involvement in the data theft, and claims that North Korea has "publicly declared that it would follow international norms banning hacking and piracy."
While not specifically naming any names, the FBI has warned that a major cyberattack has taken place against US businesses in the last two weeks. The advisory, likely given in the wake of the enormous Sony breach, gives some details about the tools used in the assault, and provides advice to the businesses on how to respond to the package, which includes informing the FBI.
In late October, the White House was the target of "unusual activity" on unclassified networks, leading to the sweep of internal systems for malware and other nefarious infiltrations. As it turns out, the White House wasn't the only high-profile network hit, as the US State Department detected "activity of concern" around the same time period.