Mastodawn

More and more companies are reporting cyber theft incidents where criminals insert themselves in the shipping process and steal cargo from trucks, according to the FBI

https://therecord.media/hackers-earning-millions-from-hijacked-cargo-fbi

Hackers earning millions from hijacked cargo, FBI says

In an advisory this week, FBI officials said cyber actors have spent the last two years breaking into the systems of brokers and carriers — allowing them to pose as victim companies and post fraudulent listings on freight delivery message boards.

Jon Greig Apr 15

NIST announced deep changes to the NVD today, writing that it would no longer enrich every vuln submission.

The only bugs that will have info added are in:

- CISA's known exploited list
- tools used by federal government
- software deemed 'critical'

https://therecord.media/nist-to-limit-work-on-cve-entries-surge

NIST to limit work on CVE entries as submissions surge

NIST said it will only add details and information to the records of vulnerabilities that meet a certain threshold — changing a longstanding mission to categorize every CVE, which stands for cybersecurity vulnerabilities and exposures.

Jon Greig Apr 10

A North Korea expert compared last week's $280 million theft from Drift to the assassination of Kim Jong Un's brother in 2017

Pyongyang created a fake company and hired people to meet up with Drift officials in person at conferences before launching the 4/1 attack

https://therecord.media/drift-crypto-theft-post-mortem-north-korea

‘It reads like a spy novel’: $280 million theft from Drift involved North Korean fake companies, cutouts

Drift officials said the operation began six months ago, when they were approached at a cryptocurrency conference by members of a company claiming to focus on quantitative trading.

Jon Greig Apr 9

After the $280 million theft from Drift, the Treasury Dept said it will start sharing cyber threat intel with the crypto industry

Crypto firms will receive the same actionable cyber information Treasury regularly shares with traditional U.S. financial institutions

This comes as the Trump admin has slashed several of the other cyber information sharing programs run out of CISA

https://therecord.media/treasury-department-announces-crypto-info-sharing

Treasury Department announces crypto industry cyber threat sharing initiative

Eligible U.S. digital asset firms and industry organizations “that meet Treasury’s criteria” will be able to receive, at no cost, the same actionable cybersecurity information Treasury regularly shares with traditional U.S. financial institutions.

Jon Greig Apr 9

Bitcoin ATM said someone stole more than $3 million after breaking into their corporate systems last month

https://therecord.media/crypto-atm-bitcoin-depot-reports-cyberattack

Cryptocurrency ATM giant Bitcoin Depot reports $3.6 million stolen in cyberattack

Bitcoin Depot filed a notice with the Securities Exchange Commission (SEC) explaining that a threat actor “gained access to certain systems and obtained control of credentials associated with the company’s digital asset settlement accounts.”

Jon Greig Apr 8

Winona County Administrator Maureen Holte told The Record that Monday's ransomware attack did not involve the same cybercriminal responsible January's ransomware attack

Minnesota governor Tim Walz sent the National Guard to help the county recover

https://therecord.media/minnesota-sends-national-guard-after-local-cyberattack

Minnesota governor sends national guard to county after cyberattack

Minnesota governor Tim Walz issued an executive order on Tuesday, writing that Winona county experienced a cyberattack on critical systems that began on Monday.

Jon Greig Apr 8

Cyber-enabled fraud accounted for the overwhelming majority of all losses reported to the FBI’s Internet Crime Complaint Center (IC3) in 2025, with a staggering $17.6 billion stolen

from Martin Matishak

https://therecord.media/cyber-fraud-surges-to-17-billion-fbi-ic3

FBI: Cyber fraud surges to $17.6 billion in losses as scams, crypto theft soar

Cyber-enabled fraud was behind 85% of all losses reported to the FBI in 2025 and constituted 45% of the 1,008,597 complaints it's IC3 unit received overall.

Jon Greig Apr 8

Buried in the FBI, DOD and NSA advisory on Iran cyberattacks on critical infrastructure operational technology was acknowledgement that 75 devices were compromised during the CyberAv3ngers campaign in 2023/2024

https://therecord.media/fbi-pentagon-warn-iran-hacking-groups-target-ot

FBI, Pentagon warn of Iran hacking groups targeting operational technology

The advisory said Iranian actors are targeting local municipal governments, water and wastewater systems and the energy sector.

Jon Greig Apr 2

Elliptic said the tactics and laundering methods indicated it was likely North Korean hackers behind the $280 million theft from Drift

https://therecord.media/drift-crypto-confirms-280-million-stolen-north-korea

Drift crypto platform confirms $280 million stolen in hack as researchers point finger at North Korea

The platform released a post-mortem on Wednesday night explaining that malicious actors gained access to Drift systems through a “novel attack” that involved the “rapid takeover” of the company’s security council administrative powers.

Jon Greig Mar 30

Dissent Doe

Mar 23

NEW, by me:

3.7 Million Telehealth Patients Allegedly Affected By Two Recent Breaches

An individual calling himself "Stuckin2019" or just "Stuck" claims responsibility for attacks on OpenLoop Health and Zealthy.

The former has notified the California AG's Office, but the latter has not notified any regulator as far as I can determine, and they haven't responded to inquiries.

#databreach #healthsec #cybersecurity #OpenLoop #Zealthy #HIPAA

@campuscodi @euroinfosec @jgreig