Acting Director Madhu Gottumukkala said it could affect everything from responding to threats to finalizing CIRCIA regulations.
The post Acting CISA chief says DHS funding lapse would limit, halt some agency work appeared first on CyberScoop.
Category: Financial
Cybercrime, Financial, Global Security News, North America
The ‘staggering’ cybersecurity weakness that isn’t getting enough focus, according to a top Secret Service official
The internet domain registration system is a major weakness that malicious hackers can exploit, but is often being overlooked, a senior Secret Service official said Thursday. “It is staggering to me that we live in a world where domain registrars and registrars will do bulk registration of various spellings of a major institution’s brand name…
Financial, Global Security News, Government, Money
Convicted Bitfinex bitcoin launderer freed from prison, thanks Trump law
A hacker who pleaded guilty to conspiring to launder billions of dollars worth of bitcoin stolen in the 2016 Bitfinex hack has been released from prison, a little more than one year after being sentenced to a five-year stint. Ilya Lichtenstein posted on X that his early release came as a result of a bipartisan…
Cybercrime, Cybersecurity, Financial, Global Security News, Money, Ransomware
Is ransomware finally on the decline? Treasury data offers cautious hope
Ransomware is on the decline, according to a study the Treasury Department released Thursday, pointing to fewer attacks and payments following an all-time spike in activity in 2023. The Financial Crimes Enforcement Network (FinCEN) report on ransomware trends concluded more positive development in payments — the critical and most visible layer of attacks that have…
Crypto, Cybercrime, Cybersecurity, Financial, Global Security News, Money
Authorities take down Cryptomixer, seize $28M in Switzerland
European authorities shut down and seized the assets of Cryptomixer, a cryptocurrency mixing service that allegedly facilitated more than $1.5 billion in money laundering for cybercriminals and other illegal activity, Europol said Monday. The weeklong operation, part of “Operation Olympia,” netted the seizure of nearly $28 million in Bitcoin, three servers in Switzerland, the cryptomixer.io…
Commentary, Cybercrime, Financial, Geopolitics, Global Security News, Government
Five Eyes just made life harder for bulletproof hosting providers
The Treasury Department, along with officials from the United Kingdom and Australia, imposed sanctions Wednesday against two bulletproof hosting providers and key people involved in their operations, in a globally coordinated effort aimed at thwarting the role these services have in enabling ransomware, phishing operations, and data extortion campaigns around the world. Authorities sanctioned Media…
Cybercrime, Cybersecurity, Financial, Global Security News, Government, Money, North America
DOJ lauds series of gains against North Korean IT worker scheme, crypto thefts
The Justice Department notched a few more wins in the fight against North Korean cryptocurrency heists and the regime’s expansive scheme to get remote IT workers hired at U.S. businesses. Officials’ countermeasures to these schemes, which ultimately launder ill-gotten money to North Korea’s government, involve the targeting of U.S.-based facilitators who provide forged or stolen…
Asia Pacific, china, Financial, Global Security News, Research, Threats
Google, researchers see signs that Lighthouse text scammers disrupted after lawsuit
The phishing kit Lighthouse, which has aided text scams like those soliciting victims to pay unpaid road tolls, appears to have been hampered shortly after Google filed a lawsuit aimed at its creators. Google said on Thursday that Lighthouse had been shut down. Two other organizations that have tracked the suspected Chinese operators of Lighthouse…
Cybercrime, Financial, Geopolitics, Global Security News, North America, Policy, Threats
Google files lawsuit against Lighthouse ‘phishing for dummies’ text scammers
Google on Wednesday filed a lawsuit against pesky text message scammers — like those who flood targets with notices that they have unpaid road tolls, or have a package waiting — in an attempt to disrupt a “phishing for dummies” operation the company accuses of victimizing more than 1 million people. The lawsuit against 25…
budget, Congress, Financial, Global Security News, Government, Threats
Agency that provides budget data to Congress hit with security incident
A federal agency that supplies budget and economic information to Congress has suffered a cybersecurity incident, reportedly at the hands of a suspected foreign party. A spokesperson for the Congressional Budget Office (CBO) acknowledged the incident Thursday after The Washington Post reported that the office was hacked, with the attackers potentially accessing communications between lawmakers…
Asia Pacific, Cybercrime, Financial, Geopolitics, Global Security News, Government, Policy
North Korean companies, people sanctioned for money laundering from cybercrime, IT worker schemes
The Treasury Department on Tuesday sanctioned eight people and two companies it accused of laundering money obtained from cybercrime and IT worker schemes to fund North Korean government objectives. According to the department, over the last three years North Korea-linked cybercriminals have stolen over $3 billion, mostly in cryptocurrency. In addition, it said, North Korean…
Cybersecurity, Financial, Global Security News, New York DFS, Third Party Risk, third-party vendors
New York updates third-party risk guidance, adds AI provisions
The New York Department of Financial Services published updates this week to longstanding industry guidance that urges financial services companies to closely watch their third-party providers. While the guidance’s updates are numerous, they are, according to the state, mostly intended to provide clarity as the technology landscape shifts. A department press release notes that the…
Cybercrime, Cybersecurity, Financial, Global Security News, Government
Officials crack down on Southeast Asia cybercrime networks, seize $15B
Federal authorities seized 127,271 Bitcoin, valued at approximately $15 billion, from Chen Zhi, the alleged leader of a sprawling cybercrime network based in Cambodia, the Justice Department said Tuesday. Officials said it’s the largest financial seizure on record. “Today’s action represents one of the most significant strikes ever against the global scourge of human trafficking…
Cybercrime, Cybersecurity, Financial, Global Security News, Money, Research
The npm incident frightened everyone, but ended up being nothing to fret about
Security professionals and observers across the industry got swept into a pit of fear Monday when an attacker took over and injected malicious code into a series of widely used open-source packages in the node.js package manager, or npm. Despite all that worry, the disaster that many presumed a foregone conclusion was averted and the…
Cybercrime, Cybersecurity, Financial, Global Security News, Money, North America, Threats
Treasury Department targets Southeast Asia scam hubs with sanctions
Federal authorities on Monday imposed sanctions on 19 people and organizations allegedly involved in major cyberscam hubs in Burma and Cambodia. “Criminal actors across Southeast Asia have increasingly exploited the vulnerabilities of Americans online,” Secretary of State Marco Rubio said in a statement. “In 2024, Americans lost at least $10 billion to scam operations in…
Andrew Garbarino, Financial, Global Security News, Government, Policy, Threats
CISA pushes final cyber incident reporting rule to May 2026
The Cybersecurity and Infrastructure Agency is delaying finalization of a rule until May of next year that will require critical infrastructure owners and operators to swiftly report major cyber incidents to the federal government, according to a recent regulatory notice. Under the Cyber Incident Reporting for Critical Infrastructure Act (CIRCIA) of 2022, CISA was supposed…
Cybercrime, Cybersecurity, Financial, Global Security News, Government, North America, Threats
Treasury sanctions North Korea IT worker scheme facilitators and front organizations
The Treasury Department on Wednesday expanded efforts to disrupt the pervasive North Korean technical worker scheme by imposing sanctions on people and organizations serving as facilitators and fronts for the country’s years-long conspiracy effort to defraud businesses and earn money despite international sanctions. Vitaly Sergeyevich Andreyev, Kim Ung Sun, Shenyang Geumpungri Network Technology and Korea…
antitrust, Financial, Global Security News, privacy, Technology, Threats
Court ruling in Epic-Google fight could have ‘catastrophic’ cyber consequences, former gov’t officials say
A court injunction in the long fight between Fortnite publisher Epic Games and Google could have “catastrophic results for the nation’s security” and “risks creating massive cybersecurity vulnerabilities in the online ecosystem,” a group of former top government officials said in a filing Monday. At issue, they wrote, is a district court injunction requiring Google…
Europe, Financial, Geopolitics, Global Security News, Money, Policy
UK sanctions Russian hackers, spies as US weighs its own punishments for Russia
As the U.S. government contemplates additional sanctions on Moscow, the United Kingdom went ahead and levied its own Friday against what it said was a group of Russia’s hackers and spies. The sanctions target 18 military intelligence officers and three divisions of the Russian military unit known as the GRU. Cyber operations in support of…
Cybercrime, Cybersecurity, Financial, Global Security News, North America, Ransomware, Threats
United Natural Foods loses up to $400M in sales after cyberattack
United Natural Foods said the cyberattack that prompted the food distributor and wholesaler to completely shut down its network last month resulted in lost sales of up to $400 million. Executives, during a business update call Wednesday with analysts and investors, said the financial impact from the attack is largely contained to the current quarter,…
Asia Pacific, Financial, Global Security News, Government, Threats
Treasury slaps sanctions on people, companies tied to North Korean IT worker schemes
The Treasury Department on Tuesday announced it has sanctioned a North Korean man participating in the widespread IT worker scheme, as well as others in a Russia-based IT worker operation that allegedly benefits the government of North Korea. It’s the second time in as many weeks that feds have taken action against people it says…
Cybercrime, Financial, Global Security News, Government, Technology, Threats
Arrest, seizures in latest U.S. operation against North Korean IT workers
U.S. authorities unsealed indictments, seized financial accounts and made an arrest in the latest attempt to crack down on North Korean remote IT workers as part of a coordinated action that the Justice Department announced Monday. The workers obtained employment at more than 100 U.S. companies using stolen and fake identities, costing them millions in…
Cybercrime, Cybersecurity, Financial, Global Security News, Money, Threats
DOJ seizes $7.7M from crypto funds linked to North Korea’s IT worker scheme
Federal authorities on Thursday said they seized $7.74 million from North Korean nationals as they attempted to launder cryptocurrency obtained by IT workers who gained illegal employment and funneled the wages to the North Korean regime. The allegedly illegally obtained funds were linked to Sim Hyon Sop, a representative of North Korean Foreign Trade Bank,…
budget, Congress, critical infrastructure, Cybersecurity, Cybersecurity and Infrastructure Security Agency (CISA), Department of Government Efficency, Department of Homeland Security (DHS), Election Security, Energy Security and Emergency Response, FEMA, Financial, Global Security News, Government, National Cyber Director, Office of Cybersecurity Energy Security and Emergency Response, Policy, Workforce
Trump budget proposal would slash more than 1,000 CISA jobs
The fiscal 2026 budget proposal President Donald Trump unveiled last week would make deep cuts to the Cybersecurity and Infrastructure Security Agency workforce, with a goal of eliminating 1,083 positions and chopping its budget by $495 million, to $2.4 billion. That’s a slightly deeper total cut than an earlier budget outline forecast. And a new…
budget, Congress, critical infrastructure, Cybersecurity, Cybersecurity and Infrastructure Security Agency (CISA), Department of Government Efficency, Department of Homeland Security (DHS), Election Security, Energy Security and Emergency Response, FEMA, Financial, Global Security News, Government, National Cyber Director, Office of Cybersecurity Energy Security and Emergency Response, Policy, Workforce
Trump budget proposal would slash more than 1,000 CISA jobs
The fiscal 2026 budget proposal President Donald Trump unveiled last week would make deep cuts to the Cybersecurity and Infrastructure Security Agency workforce, with a goal of eliminating 1,083 positions and chopping its budget by $495 million, to $2.4 billion. That’s a slightly deeper total cut than an earlier budget outline forecast. And a new…
budget, Congress, critical infrastructure, Cybersecurity, Cybersecurity and Infrastructure Security Agency (CISA), Department of Government Efficency, Department of Homeland Security (DHS), Election Security, Energy Security and Emergency Response, FEMA, Financial, Global Security News, Government, National Cyber Director, Office of Cybersecurity Energy Security and Emergency Response, Policy, Workforce
Trump budget proposal would slash more than 1,000 CISA jobs
The fiscal 2026 budget proposal President Donald Trump unveiled last week would make deep cuts to the Cybersecurity and Infrastructure Security Agency workforce, with a goal of eliminating 1,083 positions and chopping its budget by $495 million, to $2.4 billion. That’s a slightly deeper total cut than an earlier budget outline forecast. And a new…
Crypto, Cybercrime, Cybersecurity, extortion, Financial, Global Security News, North America, Ransomware
Coinbase flips $20M extortion demand into bounty for info on attackers
Coinbase responded to a security incident with combative measures Thursday after the company said cybercriminals bribed some of the cryptocurrency exchange’s international support staff to steal data on customers. The unnamed threat group stole personally identifiable information and other sensitive data on less than 1% of Coinbase’s monthly users, the company said in a blog…
Crypto, CryptoCurrency, Cybercrime, Cybersecurity, Exclusive, Exploits, Financial, financial fraud, Global Security News, investigation, investment, Money, money laundering, sophos, Threats
Who needs VC funding? How cybercriminals spread their ill-gotten gains to everyday business ventures
Cybercriminals aren’t so different from the rest of us — they live in the real world, and their spending and investment habits, though funded through crime, can look surprisingly ordinary. Luxury cars and lavish vacations may still grab headlines, but those perks are reserved for the most elite cybercriminals. In reality, everyday businesses — like pizza…
agentic ai, Financial, Global Security News, Money, ReliaQuest
ReliaQuest secures $500 Million in funding, boosting AI-driven cybersecurity operations
U.S.-based cybersecurity firm ReliaQuest has secured a significant funding boost with a new investment round totaling over $500 million, elevating the company’s valuation to $3.4 billion. The funding round was led by global investors EQT Partners, KKR, and FTV Capital, alongside existing investors Ten Eleven Ventures and Finback Investment Partners. This fresh capital injection underscores…
Asia Pacific, china, fbi, Federal Bureau of Investigation (FBI), Financial, Flax Typhoon, Geopolitics, Global Security News, Integrity Technology Group, internet of things, Internet of Things (IoT), State Department, Technology, Treasury Department
U.S. sanctions take aim at Chinese company said to aid hackers’ massive botnet
The U.S. government on Friday sanctioned a Chinese company that Western nations had connected to a Beijing-sponsored hacking group’s botnet, which had compromised hundreds of thousands of devices before a joint takedown operation last year. Flax Typhoon hackers made use of infrastructure at Integrity Technology Group to exploit victims, according to the Treasury Department’s Office…
Cybersecurity, Financial, Global Security News, Government, incident reporting, Paul Hastings LLP, Ransomware, Securities and Exchange Commission (SEC)
Study finds ‘significant uptick’ in cybersecurity disclosures to SEC
The introduction of new cybersecurity disclosure rules by the U.S. Securities and Exchange Commission has led to a significant uptick in the number of reported cybersecurity incidents from public companies, according to a leading U.S. law firm that specializes in finance and M&A activity. Analysis by Paul Hastings LLP found that since the disclosure law…