Ransomware: proposals to increase incident reporting and reduce payments to criminals

The UK government is consulting on proposals:

1: Targeted ban on ransomware payments for all public sector bodies, including local government, and for owners and operators of Critical National Infrastructure, that are regulated, or that have competent authorities.

2: any victim of ransomware not covered by 1, to engage with the authorities and report their intention to make a ransomware payment before paying over any money

3: A [unscoped/defined] ransomware incident reporting regime

Responses by 8 April 2025 at 17:00.

gov.uk/government/consultation…

#cybersecurity #ransomware #UK

Ransomware: proposals to increase incident reporting and reduce payments to criminals

The government is consulting on proposals to reduce the threat posed by the criminal infection of computer systems with malicious 'ransomware' software.

^{Home Office (GOV.UK)}

Happy #ZeroDay from your friends at Fortinet: Authentication bypass in Node.js websocket module
CVE-2024-55591 (CVSSv3.1: 9.8 critical) An Authentication Bypass Using an Alternate Path or Channel vulnerability [CWE-288] affecting FortiOS and FortiProxy may allow a remote attacker to gain super-admin privileges via crafted requests to Node.js websocket module.

Please note that reports show this is being exploited in the wild.

Indicators of compromise include possible log entries, IP addresses used, and admin accounts created. cc: @GossiTheDog @wdormann @cR0w @briankrebs

#zeroday #patchtuesday #fortinet #vulnerability #CVE_2024_55591 #infosec #ioc #threatintel #infosec #cybersecurity #fortios #fortiproxy

"On Saturday, Triplegangers CEO Oleksandr Tomchuk was alerted that his company’s e-commerce site was down. It looked to be some kind of distributed denial-of-service attack.

He soon discovered the culprit was a bot from OpenAI that was relentlessly attempting to scrape his entire, enormous site.

“We have over 65,000 products, each product has a page,” Tomchuk told TechCrunch. “Each page has at least three photos.”

OpenAI was sending “tens of thousands” of server requests trying to download all of it, hundreds of thousands of photos, along with their detailed descriptions.

“OpenAI used 600 IPs to scrape data, and we are still analyzing logs from last week, perhaps it’s way more,” he said of the IP addresses the bot used to attempt to consume his site.

“Their crawlers were crushing our site,” he said “It was basically a DDoS attack.”

Triplegangers’ website is its business. The seven-employee company has spent over a decade assembling what it calls the largest database of “human digital doubles” on the web, meaning 3D image files scanned from actual human models.

It sells the 3D object files, as well as photos — everything from hands to hair, skin, and full bodies — to 3D artists, video game makers, anyone who needs to digitally recreate authentic human characteristics."

techcrunch.com/2025/01/10/how-…

#CyberSecurity #AI #GenerativeAI #OpenAI #WebScraping #DDoS #AITraining

How OpenAI's bot crushed this seven-person company's website ‘like a DDoS attack’ | TechCrunch

OpenAI was sending “tens of thousands” of server requests trying to download Triplegangers' entire site which hosts hundreds of thousands of photos.

^{Julie Bort (TechCrunch)}

#HamConBE might sound like a pure #amateurradio (#hamradio) conference but it actually more.

The conference also aims to bring together people from different communities of users of #radiotechnology in Belgium, ranging from #hackers and #makers (#meshtastic, #LoRa, wireless domotica, ...), scientists (#astronomy, #meteo, tracking birds, ...), #space, #cybersecurity, (#infosec) #education, and others.

Check out out #CfP at hamcon.be/

HamCon Belgium:
26th of April 2025
#leuven

Headline: #PowerSchool hack exposes student, teacher data from K-12 districts

Source: bleepingcomputer.com/news/secu…

#Privacy #Security #CyberSecurity