After placing first in the Hack the Air Force challenge, Jack began working at the Pentagon's Defense Digital Service. Jack is a top-ranked bug bounty hacker, having identified over 350 vulnerabilities in companies including Google, Facebook, Uber, Yahoo, and the US Department of Defense. Jack formerly served as an Election Security Technical Advisor at CISA, where he led the development and deployment of Crossfeed, a pilot to scan election assets nationwide. Jack Cable is a security researcher and student at Stanford University, currently working as a security architect at Krebs Stamos Group. Tod highlights some of the many things Discourse is doing right with its security program.
JACK CABLE STAMOS RANSOMWHERE CODE
Stick around for our Rapid Rundown, where Tod and Jen talk about a remote code execution vulnerability that open-source forum provider Discourse experienced recently, which CISA released a notification about over the weekend. They chat about how Cable came up with the idea, the role of cryptocurrency in tracking these payments, and how better data sharing can help combat the surge in ransomware attacks. While there is no link between REvil and the Russian government, senior US and Russian officials will meet next week to discuss the attack.In this episode of Security Nation, Jen and Tod chat with Jack Cable, security architect at the Krebs Stamos Group, about Ransomwhere, a crowdsourced ransomware payment tracker.
This led Cable to believe that REvil is purely financially motivated and has no political interests. When Cable reached out toREvil in order to discuss paying the ransom, they reportedly decreased their initial demands by $20 million. As of Tuesday 6 July, following contact by a security architect at cybersecurity consulting firm Krebs Stamos Group, Jack Cable, the group have reduced their ransom demand from Kaseya to $50 million. The group had also hacked Taiwanese computer giant Acer in March, demanding $50 million in ransom. The hackers extorted $11 million from JBS, who managed to resume services afterwards.
In June, they were believed to be behind the attack on JBS, the largest meat supplier in the world, which led to some of the JBS operations in North America and Australia being shut down. REvil, derived from “Ransomware” and “Evil”, has previously been linked to a number of such instances. The group of hackers has been dubbed REvilor Sodinokibi by experts and is believed to be Russia- based. However, in a large number of similar cases, the victims do not generally publicly divulge that they were the target of such an attack, or whether they have paid the ransom. A Swedish grocery chain, a New Zealand School, a German IT company and two Dutch companies are a few of the known victims. The extent of damages is yet to be known, but the estimated number of businesses affected ranges from 1000-2000, spanning at least 17 countries. Taking advantage of the lightly staffed company due to Fourth of July celebrations in the United States, the hackers bypassed the company’s security, exploiting a zero-day vulnerability.
JACK CABLE STAMOS RANSOMWHERE SOFTWARE
Kaseya sells its software to thousands of IT and Managed Service Providers (MSPs), who in turn, serve a number of clients. On 4 July, they demanded-through the dark web- $70 million in cryptocurrency in exchange for the return of the stolen data. Miami-based information technology firm Kaseya was the target of “the largest ever ransomware attack” last weekend, when hackers exploited a bug in the IT Management software of the firm in order to steal a large amount of data on a number of clients using the Kaseya software.
0 kommentar(er)
