AboutDFIR.com – The Definitive Compendium Project
Digital Forensics & Incident Response

Blog Post

InfoSec News Nuggets 11/11/2024

FBI says hackers are sending fraudulent police data requests to tech giants to steal people’s private information 

The FBI is warning that hackers are obtaining private user information — including emails and phone numbers — from U.S.-based tech companies by compromising government and police email addresses to submit “emergency” data requests. The FBI’s public notice filed this week is a rare admission from the federal government about the threat from fraudulent emergency data requests, a legal process designed to help police and federal authorities obtain information from companies to respond to immediate threats affecting someone’s life or property. The abuse of emergency data requests is not new, and has been widely reported in recent years. Now, the FBI warns that it saw an “uptick” around August in criminal posts online advertising access to or conducting fraudulent emergency data requests, and that it was going public for awareness. 

 

Google says “Enhanced protection” feature in Chrome now uses AI 

Google has quietly updated the description of one of Chrome’s security features, “Enchaned protection,” to confirm that it will be powered by AI in a future release. It’s unclear what has changed, but as spotted by Leo on X, Google is updating its Enhanced protection mode in Chrome’s Safe Browsing feature to include AI-powered protectionThis feature now uses AI to provide real-time protection against dangerous sites, downloads, and extensions. 

 

Officials warn of Russia’s tech-for-troops deal with North Korea amid Ukraine conflict 

The EU has joined US and South Korean officials in expressing concern over a Russian transfer of technology to North Korea in return for military assistance against Ukraine. “We are closely monitoring what Russia provides to the Democratic People’s Republic of Korea (DPRK) in return for its provision of arms and military personnel, including Russia’s possible provision of materials and technology to the DPRK in support of Pyongyang’s military objectives,” warned a joint statement from South Korea’s Minister of Foreign Affairs, Cho Tae-yul, and EU officials. The statement further expressed deep concern over “the possibility for any transfer of nuclear or ballistic missile-related technology to the DPRK.” 

 

US orders TSMC to halt advanced chip exports to China 

In a new export control directive, the US is clamping down on AI chip supplies to China, citing concerns over Huawei’s potential violation of restrictions. In a significant escalation of US efforts to limit China’s access to advanced technology, the Department of Commerce has reportedly mandated Taiwan Semiconductor Manufacturing Co. (TSMC) to cease shipments of high-performance AI chips to Chinese customers. The directive, effective Monday, restricts the export of TSMC’s 7-nanometer and more advanced processors, which are widely used in AI applications, Reuters reported. 

 

Cyberattack Cost Oil Giant Halliburton $35 Million 

The expenses related to the recent cybersecurity incident suffered by US oil giant Halliburton reached $35 million by the end of September, according to the company’s latest financial report. The incident came to light on August 22, when Halliburton, one of the world’s largest oilfield service providers, confirmed unauthorized access to some of its systems.  The company immediately launched an investigation and shut down some systems to contain the incident. By the end of August, reports emerged that — based on indicators of compromise — the ransomware group known as RansomHub was likely behind the Halliburton attack. Halliburton has yet to confirm that the incident was a ransomware attack, but its brief description suggests that it was. The company has confirmed that hackers accessed and exfiltrated information from its corporate systems. 

 

Related Posts