Hackers leak DC Health Link data with Congress Members’ details

andreasc
-
0
Hackers leak DC Health Link data with Congress Members’ details
[ad_1]

A recent data breach is likely to affect hundreds of members of the US Congress as well as Capitol Hill staff after hackers stole personally identifiable information (PII) from DC Health Link, the online health insurance marketplace of the District of Columbia.

Hackread.com can confirm that a hacker has claimed to have leaked the stolen database on Breach Forums, a hacker forum that surfaced as an alternative to the popular and now-seized Raidforums.

In their post, the hacker stated that the data breach occurred in March 2023 on DC Health Link known for serving members of the U.S. Congress and Washington D.C. residents.

The hacker further stated that the total number of affected customers is around 55,000 including government staffers, politicians, members of the U.S. Congress and Senate and others. The database contains the following information:

  • Gender
  • Full names
  • Nationality
  • Date of birth
  • Phone numbers
  • Race and Ethnicity
  • Social Security Numbers
  • Home and work email addresses

Hackread.com’s founder and editor, Waqas, has seen and analyzed the data, revealing that the database is actually a 29 MB CSV file with a large chunk of duplicate data, totalling details of almost 35,000 individuals.

DC Health Link has confirmed that data belonging to an unspecified number of customers has been affected by a security incident. The organization stated that it is currently working with law enforcement and notifying affected customers.

Hackers Leak DC Health Link Database with Congress Members' Details
The leaked data (Image credit: Hackrad.com)

The FBI on the other hand has confirmed that they are investigating the matter and working with authorities to determine the scope of the breach and identify the responsible parties.

“Currently, I do not know the size and scope of the breach, but have been informed by the Federal Bureau of Investigation (FBI) that account information and of hundreds of Member and House staff were stolen,” Chief Administrative Officer Catherine L. Szpindor said.

The hackers may have also obtained sensitive health information, such as diagnoses and treatments; however, no such information has been leaked so far. The breach is particularly concerning given the sensitive nature of the data involved and the potential risks to the individuals affected.

Hackers Leak DC Health Link Database with Congress Members' Details
(Image credit: Hackrad.com)

Lawmakers and officials have expressed concern about the breach and the need for increased security measures to prevent similar incidents in the future. Some have called for greater investment in cybersecurity and stricter regulations to protect sensitive information. The FBI has urged anyone affected by the breach to monitor their personal information and report any suspicious activity.

Another Day, Another Data Breach in the U.S.

The latest data breach has hit both US government officials and unsuspecting victims, adding to the growing list of cyberattacks targeting the country. In February 2023, the FBI announced that it had investigated a “contained” data breach, and prior to that, hackers leaked the FBI security platform InfraGard’s database online.

In addition, the US Marshals Service was recently targeted in a ransomware attack. In January 2023, a security researcher discovered that the US no-fly list had been exposed to the public, and within days, the list was leaked on a hacker forum.

It is worth noting that a hacker and owner of Breach Forums was able to hack into the FBI’s email server and send a trove of emails with bogus threats.

  1. 52 Critical Orgs Hit by Ragnar Locker Gang – FBI
  2. US Govt’s secret terrorist watchlist exposed online
  3. Hackers Who Obtained CIA emails Breach FBI Servers
  4. Magecart skimming attack hits 8 US government sites

[ad_2]
Source link

Apple’s 3nm Chip Order Maintains TSMC’s Fabrication Capacity

andreasc
-
0
Apple’s 3nm Chip Order Maintains TSMC’s Fabrication Capacity
[ad_1]

Apple M3 chip

According to a recent report, Apple supplier TSMC is working to improve its capacity utilization for 3nm process technology.

A recent DigiTimes report revealed that TSMC’s 5nm fabrication capacity began to drop in November 2022. 

The news wasn’t surprising, considering Apple reduced orders for iPhone chips by 30 percent. Since the tech giant is one of TSMC’s major partners, the Taiwanese chip maker was forced to reduce the fabrication capacity for the 5nm chips. 

Besides, TSMC is also experiencing a rapid decline in 7nm and 6nm chip orders from other manufacturers. As a result, the chip manufacturers reportedly experienced a rough first quarter in 2023. 

But it’s not all dire news. 

According to DigiTimes’s source, TSMC has managed to keep its utilization rate at 70 percent or higher thanks to Apple’s 3nm chip order. 

“TSMC continues to improve its capacity utilization for 3nm process technology, which is expected to approach 50% at the end of March,” says sources. “The foundry will also grow the process output to 50,000-55,000 wafers monthly in March, with Apple being the main customer.”

Here’s what to expect from the forthcoming chip. 

What to Expect from the First-Gen 3nm Process

Industry experts believe the first-generation 3nm process could result in 35 percent more power-efficient chips than the current A16 Bionic. Furthermore, the N3 technology could significantly boost performance over the recent 5nm chips. 

So which Apple products will get the advanced chip? 

Reports suggest the M3 chip could be manufactured on the 3nm process for power efficiency and performance improvements. So we will most likely see the technology first on Apple’s next-generation 13-inch and 15-inch MacBook Air models. Also, the A17 Bionic processor on the upcoming iPhone 15 Pro models could also be based on N3E. 

 Meanwhile, DigiTimes says orders from new AI processors from other tech giants — such as AMD and Nvidia could help TSMC avoid further decline in fab utilization. 


[ad_2]
Source link

Google shipped 880,000 Pixel Watches in Q4 2022

andreasc
-
0
Google shipped 880,000 Pixel Watches in Q4 2022
[ad_1]

Google launched its first smartwatch back in October 2022, and it’s been a pretty well-received device. Since Google doesn’t really reveal its numbers, it’s hard to tell how the Pixel Watch is doing. Well, thanks to Canalys, we know how many units that the company was able to ship.

Now, one thing to note is that there’s a difference between units “Shipped” and units “sold”. People can sometimes conflate these terms. If you see a report that refers to units that a company shipped, it’s referring to the number of units that it shipped out to retailers to be sold. This number doesn’t refer to the number of devices that were purchased by consumers.

The numbers say that Google shipped 880,000 Pixel Watches in Q4 2022

All in all, the wearable market isn’t in a great spot. In the last quarter of 2022, it saw an 18% drop compared to Q4 2021. However, thanks to the Pixel Watch, and the massive decline in sales for Samsung’s Galaxy Watches, Google was actually able to place second in terms of smartphone shipments.

All in all, Google was able to ship about 4 million smartwatches last quarter. Those aren’t all Pixel Watches, however. Remember, Google also owns Fitbit. So, most of those shipments were Fitbit watches. But, to the Pixel Watch’s credit. Fitbit actually saw a 25% dip last quarter. So, it’s impressive that the Pixel Watch was able to compensate for the drop.

So, last quarter, Google shipped 880,000 Pixel Watch units. That’s about 7% of how many Apple Watch units were shipped, but it’s still an impressive figure for a device that’s still pretty new. It launched in the fourth quarter, so it started at a bit of a disadvantage.

However, this watch has gotten some decently good buzz. We should, ostensibly, see better numbers for Q1 2023, as people have had more time to get read about this watch and save up for it. If you want to read more about it, you can check out the review below.

Pixel Watch Review


[ad_2]
Source link

Apple can dump MLS if they don’t get enough subscribers

andreasc
-
0
Apple can dump MLS if they don’t get enough subscribers
[ad_1]

It’s being reported, that Apple’s deal with the MLS has a opt-out clause. Which would allow Apple to opt-out of the deal, if they aren’t seeing the subscriber goals that they are looking for.

In June 2022, Apple signed a deal with the MLS to become the broadcast home of every MLS match for the next 10 seasons. So far, MLS Season Pass has been pretty good on Apple TV+. No real issues with the broadcast, technically, which is quite impressive.

Now as to their subscriber goals? Nothing concrete has been mentioned. The report from The Athletic states that Apple could walk away if it doesn’t accrue a certain number of subscribers in a specific period of time. Both companies have been rather tight-lipped about the deal. Which is usually the case with these deals. We do know that Apple is paying $2.5 billion for the MLS rights.

Between MLS and Friday Night Baseball, sports is becoming huge for Apple

Apple has taken a different approach to its streaming service, compared to the many others out there. Instead of having a huge library of content that it is licensing from various studios, instead, it only includes originals that it owns. So their library is a lot smaller, but it is quickly growing. The advantage here is that, Apple never has to worry about losing these titles.

In addition to those originals, Apple has also gotten the rights to Friday Night Baseball for the MLB. Which it started last year, and is continuing this year. With Friday Night Baseball, Apple has (generally) two baseball games each Friday night throughout the season. Some are simulcast, while others are doubleheaders. And now Apple has the MLS Season Pass. Which is not included in the price of Apple TV+, instead, that it is an extra cost.

But with the MLS Season Pass, subscribers can watch every single MLS game, no matter where they live. There’s no blackout or out-of-market restrictions here, which is a big deal.


[ad_2]
Source link

Google Messages’ new icon now appearing for more users in the notification tray

andreasc
-
0
Google Messages’ new icon now appearing for more users in the notification tray
[ad_1]
The Google Messages icon was updated to a fresh look late last year; however, for most users, the notification icon for the app didn’t quite follow the same design change. This now changing as the notification icon has been changing widely for more users to reflect the new style.
The reports of the new icon making its rounds initially came from the Google Pixel subreddit where users starting noticing the change overnight and was then shared by 9to5Google. It turns out that a subset of Pixel 6 and 7 series users were experiencing an issue where the old Messages icon would appear in the notification tray and on the lock screen, even after the actual app icon had changed.
Google Messages' new icon now appearing for more users in the notification tray

The new design was announced as part of the #GetTheMessage campaign Google started in order to bring awareness to the benefits of using RCS instead of SMS and to encourage Apple to add RCS to its Messages app, complementing iMessage. On top of that, Google also announced a slew of updates to the app that would enrich the experience for RCS users that receive messages from iMessage users, particularly those involving message reactions. Unfortunately though, this campaign has had little to no success in changing Apple’s mind.

As far as the bug where the iconography is inconsistent between the app icon and the notification tray, it thankfully appears to be suddenly resolved with what appears to be an app or server-side update. This isn’t a huge deal as it doesn’t affect functionality whatsoever, but for those that prefer a more cohesive experience, it was a bit of an eye sore.

[ad_2]
Source link

U.S. House and Senate members Data Hacked, Offered for Sale

andreasc
-
0
U.S. House and Senate members Data Hacked, Offered for Sale
[ad_1]
Senate members Data Hacked

The breach of a Washington, DC, health insurance marketplace may have allowed hackers’ access to members of the House and Senate’s sensitive personal information, it was revealed on Wednesday. The lawmakers’ staff members and their families also suffered.

DC Health Link is the organization in charge of administering the health care plans of members of the United States House of Representatives, their staff, and their families.

“DC Health Link suffered a significant data breach yesterday potentially exposing the Personal Identifiable Information (PII) of thousands of enrollees. As a Member or employee eligible for health insurance through D.C. Health Link, your data may have been comprised,” said Catherine L. Szpindor, the U.S. House Chief Administrative Officer.

Individuals affected were notified of the breach today via email from Catherine L. Szpindor, as first reported by DailyCaller.

EHA

“Currently, I do not know the size and scope of the breach, but have been informed by the Federal Bureau of Investigation (FBI) that account information and Pit of hundreds of Mernber and House staff were stolen”, said Szpindor.

“It is important to note that at this time, it does not appear that Members or the House of Representatives were the specific targets of the attack.”

Selling Information Stolen From DC Health Servers

The information about U.S. House members that were taken from the servers of DC Health Link is being sold on a hacking forum by at least one threat actor, known as IntelBroker, according to BleepingComputer.

Notably, the House CAO Szpindor’s email doesn’t mention the data that was stolen. Over 170,000 people were affected, and a sample of the stolen data with the database header reveals that it contains all of their personal information, including names, dates of birth, residences, phone numbers, email addresses, Social Security numbers, and more.

Whole List of Stolen Information (BleepingComputer)

On Monday, March 6, the data was put up for sale, and IntelBroker alleges that it was stolen as a result of a hack into the DC.gov Health Benefit Exchange Authority.

“I am looking for an undisclosed amount in XMR cryptocurrency. Contact me on keybase @ IntelBroker. Middleman only,” says the threat actor.

U.S. House members' data up for sale
U.S. House members’ data up for sale

Adam Hudson, the Public Information Officer for Health Benefit Exchange Authority, stated that some of the stolen data from DC Health Link were posted online and that notifications will be given to people affected in a statement to BleepingComputer.

“We can confirm reports that data for some DC Health Link customers have been exposed on a public forum. We have initiated a comprehensive investigation and are working with forensic investigators and law enforcement. 

Concurrently, we are taking action to ensure the security and privacy of our users’ personal information.  We are in the process of notifying impacted customers and will provide identity and credit monitoring services. 

In addition, and out of an abundance of caution, we will also provide credit monitoring services for all of our customers. The investigation is still ongoing and we will provide more information as we have more to share.”

Network Security Checklist – Download Free E-Book


[ad_2]
Source link

Beware of Fake Facebook Profiles, Google Ads Pushing Sys01 Stealer

andreasc
-
0
Beware of Fake Facebook Profiles, Google Ads Pushing Sys01 Stealer
[ad_1]

For now, SYS01 stealer is targeting Facebook accounts of employees working for manufacturing companies, critical government infrastructures, and other sensitive industries.

The cybersecurity researchers at Morphisec have revealed details of an advanced information-stealing malware campaign which they began tracking in November 2022. They dubbed the malware SYS01 Stealer.

Researchers noted that SYS01 Stealer has been targeting critical government infrastructure and manufacturing firms’ employees. The attackers are targeting Facebook business accounts of their targets through Google ads and fake Facebook profiles, which promote games, cracked software, and adult content to compel their victims into downloading a malicious ZIP file.

The malicious use of Google Ads should not come as a surprise, since crooks have been abusing Google’s Ad Ecosystem for some years now. Just a couple of weeks ago, Google Ads were found to be spreading malware in fake messenger and browser apps.

The malware is executed on the target’s machine through DLL side-loading. The campaign was first noticed in May 2022, when it was attributed to Zscaler’s Ducktail operation, which was later rendered incorrect.

Detailed analysis

In a blog post, Morphisec researchers wrote that the archive has a legitimate application as a loader, which is vulnerable to DLL side-loading, and a malicious library, which drops the Inno-Setup installer through side-loading. In turn, the final payload is deployed as a PHP application, which actually contains malicious scripts that perform data exfiltration. Archive persistence is ensured through a PHP script.

It performs this task by setting a scheduled task. The main stealer script supports numerous other tasks, including letting the attacker check whether the victim is logged in and has a Facebook account.

Furthermore, this script also supports the downloading and execution of files from a certain URL and can upload files to the C2 server. It may also execute commands.

What’s the Objective?

This campaign is designed to steal sensitive details from the victims’ devices, such as cookies, login data, and personal and business Facebook account information. The attacker has included Rust, PHP, Python, and advanced PHP encoders to advance the delivery chain, which has helped them evade security vendors successfully for the past five months.

Beware of Fake Facebook Profiles, Google Ads Pushing Sys01 Stealer
Infection chain

SYS01 Similarities with other Infostealer?

Morphisec analysis revealed that SYS01 uses the same loading techniques and lures as the S1deload infostealer (PDF) discovered by Bitdefender. However, it is worth noting that the final payload isn’t the same.

You can stay protected from SYS01 stealer by implementing a zero-trust policy and restricting users’ rights to download and install programs. Since this campaign is based on social engineering, users should be aware of the tricks adversaries can use against them.

Protect Yourself

If you are an employee at a government or critical infrastructure organization, you should watch out for malware attacks, especially on social media sites. Here are some steps on how to do so:

  • Be wary of unsolicited messages, friend requests, and links from unknown sources on social media platforms like Facebook.
  • Verify the identity of the sender before clicking on any links or downloading any attachments.
  • Install and update anti-virus software and firewalls on your device and make sure they are up-to-date with the latest security patches.
  • Use strong and unique passwords for your social media accounts and avoid reusing passwords across different accounts.
  • Enable two-factor authentication (2FA) to provide an extra layer of protection for your accounts.
  • Avoid using public Wi-Fi networks, especially when accessing sensitive information or logging into social media accounts.
  • Regularly back up important data to an external hard drive or cloud storage service.
  • Report any suspicious activity, messages or links to your organization’s IT department immediately.
  • Stay informed about the latest malware and cyber security trends by attending regular training sessions and seminars.
  • Follow your organization’s security policies and procedures, including those for social media use.
  1. Crooks using Messenger chatbots to steal login data
  2. Fake Brave browser dropped malware from Google Ads
  3. Schoolyard Bully malware stealing Facebook credentials
  4. Google Ads malware wipes NFT influencer’s crypto wallet
  5. Mandrake Android malware stealing Facebook, crypto data

[ad_2]
Source link

2024 OLED iPad Pro Could Cost More than Current Models

andreasc
-
0
2024 OLED iPad Pro Could Cost More than Current Models
[ad_1]

2024 OLED iPad Pro

A recent report suggests that Apple’s forthcoming OLED iPad Pro could be significantly more expensive than the current iPad Pro models. 

Last week, the Korean publication The Elec claimed that Apple could announce 13-inch and 11-inch OLED iPad Pro models next year. Furthermore, the forthcoming iPad Pros could cost significantly more than the current models. 

Now the publication is doubling down on its previous report. 

Citing industry sources, The Elec claims that the 11-inch OLED iPad Pro prices could start at $1,500 — 80 percent more than the current model. Similarly, the 13-inch model could cost as much as $1,800, a significant price surge from the current $1,099 pricing.

In other words, the 2024 OLED iPad prices will rival the 14-inch MacBook Pro and 13.6 MacBook Air with an M2 chip. So what’s responsible for the price surge? 

Why 2024 OLED iPad Pro Models Could Be More Expensive

The primary reason for the forthcoming iPad Pro models’ price surge is the OLED display.  

Apple is reportedly negotiating with Samsung and LG Display on the price of supplying the panel. However, expert Ross Young says Apple’s display requirement will lead to a pricier OLED panel than the other OLED panels on the market. 

According to The Elec, OLED panels supplied for existing 10-inch devices costs roughly $100 to $150. Meanwhile, the requirement for Apple’s 11-inch and 13-inch panels could raise the price to $270 and $350, respectively. 

However, the publication admits that current OLED iPad Pro price estimates still need to be finalized. Since the expected panels from LG and Samsung are still in development, the prices could change. 

In the meantime, the reaction to the 2024 iPad Pro models’ projected pricing is mixed.

As some tech reviewers point out, the price hike is reasonable considering the switch to superior OLED technology. However, others believe the pricier iPad Pro models will be challenging to sell because the tablets lack the replacement demand of iPhones.

Well, we’ll find out when Apple announces the tablet next year. 


[ad_2]
Source link

Everything You Need To Know

andreasc
-
0
Everything You Need To Know
[ad_1]

The entire tech world is moving toward AI (Artificial Intelligence), as several companies are looking to add AI chatbots to their services. Snapchat is no different, as the popular photo-sharing app has implemented OpenAI’s ChatGPT into its service. Dubbed My AI, this is an AI chatbot that’s supposed to look and behave like a human user.

So, what is this chatbot? How does it differ from ChatGPT proper? Does it augment the Snapchat experience at all? Here’s a rundown of everything you need to know about Snapchat’s My AI.

How do I access My AI?

At the time of this article, you need to have a subscription to Snapchat+ to access My AI. It’s one of the several perks that you get with the subscription. Other perks include custom app icons, the ability to designate a user as a BFF, changeable chat backgrounds, and more.

If you’re looking to get Snapchat+, it costs $3.99/month. Getting a yearly subscription will cost you $39.99/year. However, Snapchat will eventually make this feature available to all users. To learn more about Snapchat+, click here.

To access the chatbot, just go to your chats. My AI will be pinned to the top of your conversations. Just tap on the conversation and you’ll be able to start typing.

What can you do with My AI?

So, since My AI is powered by ChatGPT, you know that it can do an absolute ton of stuff. Here’s a rundown of the core things that it can do.

Basic conversation

This might be what My AI is mostly marketed for. So, My AI will wear the mask of a human user. When you’re using it, you’ll see an avatar and everything. Also, all of its replies will show up in chat bubbles. So, it’s supposed to feel like you’re talking to a human being.

As such, you’re able to start and carry on a conversation about most subjects. You can talk about anything from your day to the loss of a loved one. You can talk about your crush or a party that you’re setting up. The AI will try its darndest to give you helpful and natural responses.

Advice

So, you’re not in the mood for conversation, but you want some advice on something. You can ask for advice on most subjects. Once you pose the question, it will give you a clear and concise response much like ChatGPT. Just type “I want advice on” and say what it is. Within a few seconds, you’ll see a chat bubble pop up with the advice you need.

Encyclopedia knowledge

You can use My AI as your personal encyclopedia. All you have to do is type in a question like “How far is the earth from the sun?” or “What is a rhino’s horn made of?”. It will give you the answer right then and there.

Written content

Just like with ChatGPT, you’re able to create written content. Obviously, it’s recommended that you attempt to create your own content. However, you have the ability to generate bits of written content like poems, stories, scripts, articles, eulogies, speeches, etc. Unlike ChatGPT, you can not generate full novels.

Responses can comfortably be 2000 words long, but striving for anything longer, you run the risk of getting an error message. So, you’re good with short stories and shorter content altogether.

If you have a specific word count in mind, you’ll just have to say “Write me an “X” word [whatever content you want written] about…” For example: Write me a 1000-word article about the problems with the LG G7. 

Code for apps

This is one of the main things that grabbed people’s attention with ChatGPT. You’re able to generate sections of Python script that you’re able to insert into your code. Just know that it’s not able to generate an entire app. It can generate small sections of code.

You’ll want to be careful about the formatting. You can copy the text from the message, but you might have to adjust the formatting when you paste it into your code.

Recipes

This is a fun one. You’re able to generate recipes for different dishes using My AI. It will tell you all of the ingredients first and then tell you the process of cooking it. What’s neat is that you talk back and forth with the bot to make the right dish for you.

Say, you get a recipe for tacos. You can reply with something like “let’s make them spicy” and you’ll get a revised recipe with an added spicy ingredient. Speak to it as though you’re speaking to a human being.

Respond with things like your likes, dislikes, what kind of things you want to add or take away, etc.

What are the limitations?

So, since My AI is riding on the back of the Boeing 747 that is ChatGPT, it can do a lot. However, everything has its limits. There are things that you’re not able to do with My AI.

Earlier in the article, I mentioned that you can generate stories and get advice on most subjects. Well, you’re not able to get responses that deal with the act of sex. So, you won’t be able to generate stories or get advice about any explicit activities. However, I emulated a conversation and used this line: So, the subject of… you know what… came up.

My AI didn’t outright avoid responding. It said, “I understand, and it’s a natural and important topic of discussion in any romantic relationship…” So, it understood what “You know what” meant, and it also offered constructive advice.

You also can’t generate content dealing with violence or get advice on prescription medication.

How does it compare to ChatGPT?

This is a pretty important question. While My AI uses ChatGPT, it’s not an exact copy. There are some minor differences between both chatbots.

For starters, there’s a major difference in the speed at which you get your responses. With ChatGPT, you’ll see the response gradually type itself out. However, with My AI, you’ll see the response pop up as a chat bubble, and it’s exponentially faster. Most responses are almost instantaneous.

While that’s a win for My AI, ChatGPT was able to stick to the topic at hand better than My AI. I started a conversation about the loss of a pet. ChatGPT was able to remember details about the pet, the name of the tribute I said I was going to write for the pet when it died, and other details when the conversation strayed far from the core subject.

My AI was able to stick with the conversation pretty well. I emulated the same conversation and My AI wasn’t able to hold onto details as well. I asked it questions about the pet down the road, and it forgot what we were talking about altogether.

Why use My AI?

My AI is perfect for short-term conversations. If you need a result within a few messages, then you won’t see any issues. You’ll just need to be careful about where you’re steering the conversation. It won’t be hard to knock My AI off of the subject and onto a different one. Despite that, it’s an excellent alternative to ChatGPT if you want to use your phone.


[ad_2]
Source link
1...1,3981,3991,400...1,475Page 1,399 of 1,475