jon greig
@jgreigj
Followers
3K
Following
446K
Media
390
Statuses
27K
@TheRecord_Media cybersecurity reporter. formerly @zdnet @techrepublic @blavity @cambodiadaily @haitiantimes_ — send tips to [email protected]
New York, NY
Joined November 2012
SCOOP: Hackers breached CISA's systems last month through Ivanti vulnerabilities, forcing the agency to take its IP Gateway and Chemical Security Assessment Tool (CSAT) offline. The agency wouldn't say who was behind the attack or if data was stolen.
3
78
182
Microsoft called a new report from Wiz on the recent U.S. gov't hack "speculative and not evidence-based." Wiz said they're confused because they worked on the report with members of Microsoft's security team. @TheRecord_Media #Microsoft #China #Wiz.
8
84
205
Slot machines, ATMs and more are down at all MGM Resorts after the company discovered a cyberattack on Monday afternoon. @TheRecord_Media #MGMResorts #MGM .
5
51
96
A security researcher told me he found his wife's information in the #23andMe files, which had 1 million users of Ashkenazi heritage and 300,000 users of Chinese heritage. 23andMe first denied the leak then said it was due to scraping. @TheRecord_Media .
3
51
95
Mexican president López Obrador addressed the #GuacamayaLeaks at a press conference this morning. #Guacamaya told @TheRecord_Media that it is frustrated by the media's focus on López Obrador's health instead of the files on #TrenMaya #Guacamaya .
3
40
90
Great report from SentinelOne, Recorded Future and TeamT5 about China's use of ransomware to provide cover for espionage campaigns. Confirms some of what I reported about the attack on the government of Palau earlier this year.
1
46
90
@zir07 @emyrderfel @tomgara The kid was so skilled the US Department of Homeland Security wrote a report about his activities. These kids are savants. And frankly, social engineering attacks don’t take years of expertise.
1
1
63
@JacobBe41380326 @DragonflyJonez she’s not remotely the best womens college player of all time and isn’t even a top 50 wnba right now. history doesn’t start when you started watching.
2
0
58
SolarWinds — the technology firm at the center of a December 2020 hack that affected multiple U.S. government agencies — said its executives may soon face charges from the SEC for its response to the incident. @TheRecord_Media #solarwinds #sec.
0
23
50
The National Cybersecurity Strategy is finally out! Key pillars: .- Cybersecurity requirements for critical infrastructure .- Offensive cyber actions against hackers and nation states .-Shifting liability onto software manufacturers.
2
19
51
More than 90% of submissions to the government's National Vulnerabilities Database have not been analyzed or enriched since the agency announced cutbacks in February, VulnCheck research shows.
2
24
51
The #LockBit #ransomware gang posted an apology for attacking Canada's largest children's hospital before Christmas. The gang claimed to offer the hospital a decryptor for free but the hospital has not said whether it works. @TheRecord_Media .
3
18
38
Can’t believe #LockBit got popped while I’m on my honeymoon 🥹🥹. Wishing everyone a very very merry #FuckLockBit -mas from the Serengeti! .
7
0
40
Sudan is experiencing severe internet outages amid a power struggle that has pitted the army against a powerful paramilitary force in the streets of the capital Khartoum and around the country #Sudan. @TheRecord_Media @netblocks .
1
27
39
U.S. intelligence agencies are warning of increasing cyberattacks targeting U.S.-based space companies by unnamed foreign intelligence services. @TheRecord_Media #space #cyber.
1
26
39
The @SECGov charged SolarWinds CISO Timothy Brown with fraud for his role in allegedly lying to investors by “overstating SolarWinds' cybersecurity practices and understating or failing to disclose known risks.”. @TheRecord_Media #SolarWinds #SEC.
2
19
38
A toolkit to create DIY versions of the #LockBit #ransomware leaked yesterday. @BrettCallow @_JohnHammond @uuallan @dickobrien spoke to @TheRecord_Media about what it all means.
1
20
38
#India has removed its controversial ban on #VLC media player after the company went through an appeals process and addressed some of the concerns raised by the Ministry of Electronics and IT. @TheRecord_Media .
0
15
34
A Tallahassee hospital has been forced to divert patients to other facilities and cancel all non-emergency surgical procedures after being hit by a cyberattack that began on Thursday night. @TheRecord_Media . They wouldn't say but its likely #ransomware.
1
15
32
shout out to @BryanLowry3 for asking about this.
Psaki: I don’t think anyone seeing that footage would think it’s acceptable or appropriate
1
4
29
Netblocks told us on friday that one of the biggest internet providers was down. now it appears they’re all down #sudan .
⚠️ Confirmed: Real-time network data show a near-total collapse of internet connectivity in #Sudan with national connectivity now at 2% of ordinary levels; the incident comes as foreign diplomats are evacuated amid fighting between military and paramilitary forces 📉
0
16
29
I spoke to @uuallan, @BrettCallow and dozens more about the FBI's Hive #ransomware operation. Most said the novel operation was a major step forward but the lack of arrests means the group is likely to reconstitute in some form #Hive. @TheRecord_Media .
1
17
30
@CISACyber has already started work on a new version of the National Cyber Incident Response Plan (NCIRP) — the framework that outlines the country’s response to significant cyber incidents. @TheRecord_Media #CISA #NCIRP #COTE.
0
13
29
@SadeLoves_xox between the tyla stuff and the “only african americans are black” i’m so thankful 🙏🏾🙏🏾.
0
1
28
Russian state hackers are increasingly attempting to deploy backdoors on the devices of targets in NATO countries and Ukraine, according to new research from Google’s Threat Analysis Group. @TheRecord_Media #TAG #Russia #NATO.
0
13
26
@WrittenByHanna every clip of this movie makes clear that they were never physically in a single scene together. why even make a movie this way.
0
0
26
Hackers attacked the national power grid of an unspecified Asian country earlier this year using malware typically deployed by personnel connected to China’s government, @symantec said Tuesday. #ShadowPad #nationalgrid @TheRecord_Media .
0
13
21
@adamjohnsonNYC he was similarly terrible when discussing north korea. It was really sad to see him do the exact same thing here. he literally “yadda yadda”d the us bombing nk into the Middle Ages in the 50s, the main reason why the hate us now and the purported point of the segment.
0
2
21
One of the largest hospitals in Florida said hackers stole the sensitive data of more than 1.2 million patients during an attempted ransomware attack in May. @TheRecord_Media #Tampa #Snatch.
0
15
24
The Justice Department is accusing the administrator of popular cybercriminal platform BreachForums of facilitating access to the sensitive personal information of millions of U.S. citizens #breachforums #raidforums #fitzpatrick. @TheRecord_Media .
1
18
22
Hackers allegedly connected to the North Korean government are using fake U.S. military job-recruitment documents to lure people into downloading malware staged on legitimate — but compromised — South Korean e-commerce sites. @TheRecord_Media #STARKMULE.
1
8
22
Telecommunications giant AT&T confirmed this week that a breach exposed the sensitive information of about nine million customers #ATT #breach. @TheRecord_Media .
1
18
22
Less than one fourth of all #NetWalker ransomware victims reported incidents to law enforcement, according to officials from the Justice Department #RSAC2022 #RSAC
1
19
20
@PrestonMitchum she did the same thing with andrew yang. using people who can/have/will cause real material harm to populations just for clicks is certainly a choice.
0
1
17
0
11
18
The United Kingdom arm of shipping giant DHL said it is investigating a data breach sourced back to its use of the MOVEit software, which has been exploited by a Russia-based ransomware group for nearly two months. @TheRecord_Media #DHL #MOVEit #Clop.
1
12
19
The Dept of Agriculture @USDA is the 2nd fed agency to confirm being affected by the #MOVEit bug after @ENERGY. Dept. of Labor, Education and Interior said they were not hit. State Department and Defense Department declined to comment. @TheRecord_Media .
1
8
17
I spoke with @CISACyber about the 121 Risk and Vulnerability Assessments they conducted in 2022 on federal agencies, private and public sector critical infrastructure operators; and state, local, tribal, and territorial stakeholders. @TheRecord_Media #RVA.
0
14
18
Hackers are exploiting a new zero-day vulnerability affecting popular file transfer tool MOVEit Transfer, which is used by thousands of companies including the MLB, Disney, Chase and more #moveit. @TheRecord_Media .
1
10
17
Black Hat and DefCon were amazing. the amount of thoughtful researchers, experts, hackers and gov't officials gives you hope that we're (kinda) on the right path. here are some stories from Las Vegas last week @TheRecord_Media #BlackHat #DEFCON31 #blackhat2023
2
1
17
@monaeltahawy I wish I could print this and put it on a billboard in Times Square. For white ppl, racism and white supremacy are purely theoretical, so they only view them as ideas to be challenged and not literal, physical danger.
0
4
14
@keithboykin “Belford said the first officer is being considered a victim, because of attempted vehicular assault and even though Young is deceased, the crime victim status remains. The second officer is considered a crime victim because his arm was in the car as she pulled away”.
4
2
13
@MarisaKabas @thisisjendoll judges have been dunking and grandstanding on black people for hundreds of years. now that it’s being used positively to support women some men are complaining?? nassar deserved all of this tenfold.
0
2
12
Researchers are warning about a group of hackers named "Tactical Octopus" that are using tax-related email lures to spread dangerous malware. @TheRecord_Media .
1
10
15
#ransomware groups always find new ways to astound me. attacking a children's hospital around #Christmas feels like a new low #sickkids #canada. @TheRecord_Media .
0
11
15
In the report, Wiz said the hackers could have used the stolen key to forge access tokens for a variety of Azure programs, like SharePoint, Teams and OneDrive.
3
5
15
Two companies based in #Luxembourg are grappling with an alleged ransomware attack that began last week, the latest in a string of incidents involving European energy companies. @TheRecord_Media .
0
9
15
I spoke to several experts and the Guacamaya hackers themselves about the #GuacamayaLeaks. they spoke at length about the widespread use of #spyware, the lack of military investment in #cybersecurity and more #guacamaya #LatinAmerica . @TheRecord_Media .
2
6
16
The City of #Oakland has declared a state of emergency one week after a #ransomware attack hampered local government operations. @TheRecord_Media .
1
8
15
This is absolutely sick. These #ransomware gangs have no conscious, no code. On Your Mark does incredible work. Hopefully a cybersecurity company steps up to help them out with this. How long is the US govt going to allow #LockBit to launch attacks like this???.
LockBit #ransomware group has added On Your Mark, Inc ( to their victim list. They claim to publish the organizations data on 23 Nov 2023. #USA .#lockbit #darkweb #databreach #cyberattack
4
6
16
One of the world’s most prominent ransomware gangs has taken credit for a cyberattack on Japanese watchmaker Seiko. @TheRecord_Media #Seiko #ALPHV .
0
7
16
The CEO of boating giant Brunswick said the company may have lost up to $85 million last quarter due to an "IT security incident". @TheRecord_Media #Brunswick .
0
5
16
Gov't officials in Fort Worth, Texas confirmed that hackers stole about 180GB of work orders, employee lists, invoices, police reports, emails, camera footage and more from View Works - a system they use to manage city maintenance work. @TheRecord_Media .
1
7
11
Students at dozens of the biggest universities and colleges in the U.S. and Canada have been affected by a cyberattack targeting online ticketing platform @AudienceView . @TheRecord_Media .
1
7
13
The average ransom demand was $1.62 million — up 74% over the past year. 36% of Coalition’s policyholders facing an attack did pay ransoms and lowered them on average to 44% of the original amount demanded by the attackers.
0
12
12
Officials in Gabon have not said when they plan to restore internet access. @netblocks said the shutdown impacted more than a dozen internet providers. @TheRecord_Media #Gabon #GabonElection .
1
11
15
Before no-showing a critical Congressional hearing today, #UnitedHealth said it may end up losing more than $1 billion from the recent ransomware attack #UHG.
1
13
15
The government of #Palau was hit with ransomware two weeks ago - allegedly by LockBit and DragonForce - but the Tor links didn't work and neither gang ever reached out to discuss a ransom. So who really hacked Palau?. Comments from @uuallan @BrettCallow .
0
12
15
White House Deputy National Security Adviser Anne Neuberger said #ransomware payment bans have been a topic of discussion among members of the Counter Ransomware Initiative. Jordan, Costa Rica and Colombia have joined the initiative. @TheRecord_Media .
0
7
14
The FBI has attributed three recent cyberattacks on cryptocurrency platforms to the North Korean government and said they are now cashing out $40 million worth of bitcoin. @TheRecord_Media #NorthKorea #bitcoin #cryptohack.
0
2
14
The @FBI and @USDOJ_Intl took down the infrastructure of the #Hive #ransomware group on Thursday, announcing that their agents had been inside the group’s systems since July 2022. @TheRecord_Media .
1
3
13
Crazy story from @daryna_antoniuk . "Vitiuk has been reassigned to serve in combat and already has left for the front on Tuesday".
1
5
14
@TheDailyLeft buddy, that entire blog post is a defense of someone who doesn’t deserve it. everyone knows there’s a difference. The kind of men who constantly point it out are those who *only* think the Weinstein’s of the world should be punished, and all other stuff shld be forgiven.
0
0
12
A Mississippi county is recovering from a ransomware attack that crippled all of the government’s computers. thanks to @uuallan and @BrettCallow for the data on ransomware attacks affecting local gov'ts in 2023.@TheRecord_Media #GeorgeCounty #Mississippi .
0
10
14
The City of Oakland denied that it was hit with a second ransomware attack after it was added to LockBit's leak site on Tuesday #lockbit #oakland #play #Ransomware . @TheRecord_Media . And thanks @AlvieriD @uuallan @BrettCallow for sharing thoughts.
0
6
14
Former Uber CSO Joe Sullivan avoided prison time after a federal judge questioned why the DOJ didn't also charge former CEO Travis Kalanick. But the judge also noted that CISOs were gravely misunderstanding the case. @TheRecord_Media .
0
5
10
The government of Tasmania is looking into claims that it was attacked by the Clop ransomware group, which has spent weeks exploiting a vulnerability in a popular file sharing tool #fortra #tasmania #clop #goanywhere . @TheRecord_Media .
0
10
12
Yamaha is the latest company to be posted by two different ransomware groups. insights from the brilliant @uuallan @BrettCallow @AlvieriD . #YAMAHA #Akira #BlackByte.
0
4
13
A new administrator has stepped up to take over BreachForums after the alleged owner was arrested last week by the FBI #breached #pompompurin #Baphomet. @TheRecord_Media .
0
4
13
The Dark Pink hacker group has been tied to five new attacks on governments, militaries and organizations based in Belgium, Thailand, Brunei, Vietnam and Indonesia. #DarkPink . @TheRecord_Media .
1
4
12
The U.S. government warned on Friday that three new vulnerabilities have been discovered in the MOVEit file transfer software . Dozens of universities and banks came forward this weeks due to breaches at NSC, TIAA and PBI. @TheRecord_Media #MOVEit.
0
9
12
Nearly 20,000 students in West Virginia were forced to miss classes on Monday due to a cyberattack that crippled their school #westvirginia #cyberattack #ransomware. @TheRecord_Media .
1
7
10
A #Mandiant spokesperson told me: "We are aware of the incident impacting the Mandiant X account. We've since regained control over the account and are currently working on restoring it.". @TheRecord_Media #Phantom #Mandiant.
0
1
12
Black Basta took credit for a devastating ransomware attack on the Raleigh Housing Authority (RHA) that disrupted the organization for weeks in May. @TheRecord_Media #Raleigh #BlackBasta.
1
6
12
#Tenafly Public Schools in Bergen County, New Jersey is in the process of recovering from a #ransomware attack that began on June 2.
0
6
11
Cybersecurity researchers @Cofense uncovered a large phishing campaign using malicious QR codes with the hopes of acquiring Microsoft credentials at several targets, including a major U.S. energy company. @TheRecord_Media #QR.
0
5
12
@JakobJohnston the news outlets covering these gangs like freedom fighters are so disappointing. the obsession with jimmy bbq shows they’re not even trying to report on this crisis accurately. the guy barely controls his own neighborhood.
0
0
11
Colonial Pipeline said a breach claimed by a dubious ransomware gang was related to an unnamed third party that was attacked. That unnamed organization is working with CISA to address the issue, according to a #Colonial Pipeline spox. @TheRecord_Media .
0
7
9
@hrw @accessnow @EFF @article19org @privacyint and @KICTANet slammed the latest draft of the UN Cybercrime Treaty, warning that it would expand gov't surveillance powers and "be disastrous for human rights.". @TheRecord_Media #cybercrimetreaty #UN.
0
7
10
#FBI director Wray said the Chinese gov't could use Tik Tok "to control software on millions of devices" and "potentially technically compromise personal devices.”. #TikTok told me its "on a path to fully satisfy all reasonable U.S. national security concerns.”.@TheRecord_Media
4
9
12
Several colleges and universities in Louisiana are restoring their networks after the Louisiana State Police said it found evidence that their systems had been compromised #Louisiana . @TheRecord_Media .
0
7
12
Prince George's County Public Schools — one of the largest school districts in the United States — announced on Monday that it discovered a cyberattack on its network. The district didn't say if its a ransomware attack. @TheRecord_Media #PGcounty.
0
7
11
Qakbot is still cooking, according to @TalosSecurity . The hackers behind the Qakbot malware have shifted their focus to distributing variants of the Cyclops/Ransom Knight ransomware as well as the Remcos backdoor malware. @TheRecord_Media #Qakbot #Cyclops.
0
5
11