Data Breach at Wyze Labs Exposes Information of 2.4 Million Customers

Last week, Wyze, a cost-effective home-security system company, experienced a large-scale breach impacting 2.4 million customers. Cybersecurity consulting firm Twelve Security notified Wyze about the breach, stating that Wi-Fi network details and email addresses of customers had been exposed for a total of 23 days. The unsecured database was connected to an Elasticsearch cluster from December 4, 2019, to December 27, 2019.

Wyze placed the cause of the data leak on an employee mistake that persisted due to a lack of security protocol enforcement. A new employee created a “flexible database to quickly pull user analytics, such as camera connectivity rates, user growth and the number of devices connected per user,” however, (s)he didn’t configure the proper security protocols on the database.

Wyze sent an email out Tuesday morning to its customers with further information about the breach and what actions the security company will take to protect its customers in the future.

Read more here

North Korean Hackers Allegedly Steal ‘Highly Sensitive Information From Microsoft Users

Microsoft is suing Thallium, an infamous North Korean hacking group, for allegedly stealing highly sensitive information from multiple organizations and individuals within the United States.

According to CNN and Microsoft, “Thallium targeted government employees, think tanks, university staff and members of groups that work on issues including nuclear proliferation and human rights”

More specifically, the lawsuit calls out two individuals who Microsoft believes work for Thallium. Using spear phishing attacks, Thallium has allegedly stolen passwords and other sensitive information from individual users. Once the group obtains login credentials, they scavenge emails, contact lists, and all additional information stored on Microsoft users’ accounts.

According to Microsoft, Thallium has been active since 2010 and poses a substantial threat to several organizations around the United States.

Read more here

Maze Ransomware Releases Files Stolen From City of Pensacola

Earlier this month, Pensacola became a victim of a ransomware attack, forcing the city to shut down its computer systems. Attackers used “Maze Ransomware” and demanded a $1 million ransom to decrypt the city’s files.

Last week, the cybercriminals released 2GB of the 32GB of data they stole and encrypted from the Pensacola network. In a discussion with Bleeping Computer, the attackers stated that the purpose of releasing Pensacola’s data was to prove that more than a few files were taken during the ransomware attack and that more data may be released in the future.