Zebeth Media Solutions

cyberattack

New York Post says its site was hacked after posting offensive tweets • ZebethMedia

By zebethcontrolPosted on Posted in cyberattack, data breach, news organizations, SecurityNo Comments on New York Post says its site was hacked after posting offensive tweets • ZebethMedia

New York Post, one of the biggest New York City daily newspapers, said it was hacked on Thursday after several offensive articles and tweets were published to the newspaper’s website and Twitter account. The articles and tweets, which were racist and sexually violent in nature, were pulled a short time later. ZebethMedia is not publishing the contents of the tweets, several of which called for the assassination of politicians and public figures. The New York Post has been hacked. We are currently investigating the cause. — New York Post (@nypost) October 27, 2022 It’s believed the New York Post’s content management system, used for publishing stories and articles, may have been breached. The offensive tweets were sent via SocialFlow, a popular website plugin used to push stories to social media sites. The tweets also contained links that pointed to web pages on the Post’s website, but which were no longer accessible at the time of writing. A spokesperson for News Corp, which owns the New York Post, did not immediately respond to a request for comment. The breach comes weeks after Fast Company’s content management system was breached to push offensive Apple News notifications to readers. Fast Company pulled its site down for more than a week to rebuild its systems following the compromise.

Read More

Hive ransomware gang leaks data stolen during Tata Power cyberattack • ZebethMedia

By zebethcontrolPosted on Posted in cyberattack, data breach, ransomware, Security, Tata PowerNo Comments on Hive ransomware gang leaks data stolen during Tata Power cyberattack • ZebethMedia

The Hive ransomware group has claimed responsibility for the recent cyberattack on Tata Power, a leading Indian energy company, and has started leaking stolen employee data. Tata Power, which serves more than 12 million customers through its distributors, confirmed on October 14 that it had been hit by a cyberattack that impacted some of its IT systems. “The company has taken steps to retrieve and restore the systems. All critical operational systems are functioning,” Tata Power said at the time, but did not confirm any specific details about the attack and its impact at the time. Hive, the ransomware gang that recently hit the Costa Rican government, this week listed Tata Power on its dark web leak site, which it uses to publicize attacks and stolen data. The group claims it encrypted the company’s data on October 3, suggesting Tata Power may have known about the breach two weeks prior to its initial filing, according to the listing, which ZebethMedia has seen. The listing of stolen data suggests any negotiations to pay a ransom failed. This data, reviewed by ZebethMedia, includes sensitive employee information, such as Aadhaar national identity card numbers, tax account numbers, salary information, home addresses and phone numbers. The leaked data, which was posted to Hive’s dark web leak site on October 24, also includes engineering drawings, financial and banking records, client records and some private keys. “The leak has sensitive data but nothing that affects power grids,” Rahul Sasi, co-founder and CEO of threat intelligence firm CloudSEK, who also reviewed the leaked data, told ZebethMedia. Sasi said that the group’s motivation appears to be purely financial. ZebethMedia contacted Tata Power but had not received a response at the time of publication. The Hive ransomware gang has been active since mid-2021. The gang and its affiliates started targeting organizations that experienced high downtime costs, such as healthcare providers, energy providers and retailers. The group is known for its aggressive tactics and has been observed using methods such as “triple extortion,” whereby the attackers seek money not only from the organization that was first targeted but also from anyone who might be impacted by the disclosure of that organization’s data. The attack on Tata Power is the latest in a series of attacks carried out by Hive. Last month, the group claimed an attack on the New York Racing Association just a few days after leaking data stolen from Bell Canada-owned subsidiary Bell Technical Solutions.

Read More
Subscribe to Zebeth Media Solutions

You may contact us by filling in this form any time you need professional support or have any questions. You can also fill in the form to leave your comments or feedback.

We respect your privacy.
business and solar energy