Welcome to Cloud Security News, a new weekly blog grabbing the more interesting cloud security scoops from the web. Sit back, relax, and catch up on all you should know about this week.
There was no shortage of breaking events in the cybersecurity space this week as large-scale data breaches once again stole headlines. The World Anti-Doping Agency announced the hack of US Olympian personal and health information with a second wave of information released on Wednesday, and reports surfaced that the Republican National Convention may (or may not according to House Homeland Security Chairman) have been hacked as well. Additionally, New York’s Department of Financial Services proposed all banks, insurance companies, and financial firms implement a cybersecurity plan. Read the stories below to catch up on the latest industry news.
The U.S. Government is investigating an attack on U.S. Olympians which took place via the World Anti-Doping Agency. The WADA issued a statement saying that the attacks originated in Russia and further attributed the hack to Tsar Team, also known as APT28 and Fancy Bear. As you may recall, Fancy Bear is one of two hacking groups accused of hacking the Democratic National Committee’s computer network last June.
The New York Post: New rule would require city firms to hire cybersecurity officers
By Kevin Dugan (@KevinTDugan)
New York is leading the charge in protecting consumers and financial systems from cyberattacks by proposing all banks, insurance companies, and financial firms implement a cybersecurity plan. At the core, CISOs would be responsible for briefing corporate boards two times per year to bring awareness to the organization’s susceptibility to attacks. Also known as the “first-in-the-nation” proposal, it could go into effect as early as November.
Politico: RNC denies it was hacked
By Louis Nelson (@louisjnelson)
House Homeland Security Chairman Mike McCaul said that he “misspoke” Wednesday when he told CNN that Russian hackers had penetrated the computer systems of the Republican National Committee. It started when McCaul told CNN’s Wolf Blitzer that the RNC has also been hacked when asked if he thought the Russians were trying to influence the presidential election in favor of the Republican candidate, Donald Trump. In a statement released shortly after his TV appearance ended, McCaul (R-Texas) said it was “Republican political operatives,” not the RNC, that had been hacked.
By Jayce Wagner (@jkwagner)
ClixSense acknowledged a data breach of customer data on September 11. The breach compromised around 6.6 million user accounts including usernames, passwords, and other personal information. Data of 2.2 million people was posted to PasteBin over Labor Day weekend.
Infosecurity Magazine: Russian IM Biz QIP Spills 33 Million User Accounts
By Phil Muncaster (@philmuncaster)
Infosecurity shares details of QIP.ru data breach of over 33 million user accounts. QIP is a free instant messaging platform that allows users to make video and audio calls. The database was provided by ‘daykalif’ who was also responsible for the hack of 100 million Rambler.ru users. After Rambler and VK.com hacks, this is the third major breach related to the source to be revealed over the last few weeks.