Security News

Ukrainian police have arrested six people, alleged to be members of the notorious Clop* ransomware gang, seizing cash, cars - and a number of Apple Mac laptops and desktops. The six suspects were arrested in joint raids carried out with South Korean law enforcement authorities earlier today, cops in Ukraine said.

The U.S. Department of Justice announced on Thursday that a multinational operation has led to the seizure of Slilpp, a well-known marketplace for selling stolen online logins that offered more than 80 million sets of credentials for sale. Since 2012, Slilpp has been an underground market to buy and sell logins for bank accounts, online payment accounts, mobile phone accounts, retailer accounts and more, according to the DOJ. Those who purchased the login credentials used them to conduct unauthorized transactions, such as wire transfers.

Federal police broke Canada's privacy laws by using a US company's controversial facial recognition software in hundreds of searches, an independent parliamentary watchdog ruled Thursday. In a report to lawmakers, privacy commissioner Daniel Therrien said Clearview AI's collection of images without consent and the Royal Canadian Mounted Police's use of that database were illegal.

Australia's Federal Police is getting more help from some very good boys with four paws, wagging tails, and the ability to sniff out tech equipment with their highly sensitive noses. The dogs can sniff out things like USB sticks or SIM cards, a task difficult for humans seeing as the devices are small and easily hidden.

IT pro Rob Dyke says an NHS-backed company not only threatened him with legal action after he flagged up an exposed GitHub repository containing credentials and insecure code, it even called the police on him. What happened next united infosec professionals across the world as well as triggering a crowdfundraiser and a behind-the-scenes legal war: we're told Apperta sent Dyke legal demands, and followed those up by alleging to the cops that he broke Britain's computer security laws.

A Russian-speaking ransomware syndicate that stole data from the Washington, D.C., police department says negotiations over payment have broken down, with it rejecting a $100,000 payment, and it will release sensitive information that could put lives at risk if more money is not offered. The Babuk group said on its website late Monday that it would release "All the data" it stole from the Washington police department if it did not "Raise the price."

The cybercrime syndicate behind Babuk ransomware has leaked more personal files belonging to the Metropolitan Police Department after negotiations with the DC Police broke down, warning that they intend to publish all data if their ransom demands are not met. "The negotiations reached a dead end, the amount we were offered does not suit us, we are posting 20 more personal files on officers, you can download this archive, the password will be released tomorrow. if during tomorrow they do not raise the price, we will release all the data," the gang said in a statement on their data leak site.

Babuk Locker ransomware operators have leaked personal files belonging to police officers from the Metropolitan Police Department after negotiations went stale. The ransomware gang claims the data was leaked because the amount of money the DC Police was willing to pay did not match Babuk Locker's ransom demands.

Law enforcement agencies across the U.S. have used facial recognition technology to solve homicides and bust human traffickers, but concern about its accuracy and the growing pervasiveness of video surveillance is leading some state lawmakers to hit the pause button. The issue caught fire in statehouses after law enforcement applied facial recognition technology to images taken from street cameras during last year's racial justice demonstrations - and in some cases used those to make arrests.

Another government agency has found itself the victim of a ransomware attack, and this time it's Washington, D.C.'s own police department. Serving the nation's capital, the Metropolitan Police Department has acknowledged unauthorized access on its server, an attack for which the Babuk Locker gang has claimed responsibility, according to BleepingComputer and other sites.