HPR3858: The Oh No! News.

The Oh No! news.Oh No! News is Good News.

• Threat analysis; your attack surface.
• Article: For-Profit Companies Charging Sextortion Victims for Assistance and Using Deceptive Tactics to Elicit Payments.
  
  • Author: FBI Internet Crime Complaint Center. (2023, Apr 7).
    
  • The companies use deceptive tactics—including threats, manipulation, and providing false information—to coerce sextortion victims into paying for their services. Some of the services for which the companies charge fees, such as sending the perpetrators cease and desist orders, make victims feel better but are not legally enforceable. The companies may also attempt to discourage victims from reporting the sextortion to law enforcement. Limited reporting indicates the companies are directly or indirectly involved in the sextortion activity.
    
• Article: Former Ubiquiti dev who extorted the firm gets six years in prison.
  
  • Author: Bill Toulas. (2023, May 11).
    
  • Nickolas Sharp, a former senior developer of Ubiquiti, was sentenced to six years in prison for stealing company data, attempting to extort his employer, and aiding the publication of misleading news articles that severely impacted the firm's market capitalization.
    
• Article: Toyota: Car location data of 2 million customers exposed for ten years.
  
  • Author: Bill Toulas. (2023, May 12).
    
  • Toyota Motor Corporation disclosed a data breach on its cloud environment that exposed the car-location information of 2,150,000 customers for ten years, between November 6, 2013, and April 17, 2023.
    
• Article: Failure to comply with Bus Open Data regulations leads to financial penalty for operator.
  
  • Author: Traffic Commissioners for Great Britain. (2023, May 4).
    
  • The Traffic Commissioner for the West Midlands, Miles Dorrington, imposed a financial penalty under section 155 of the Transport Act 2000 of £1500, based on a £100 penalty for each of the vehicles authorised on the operator’s licence.
    
• Article: Criminals Pose as Chinese Authorities to Target US-based Chinese Community.
  
  • Author: FBI Internet Crime Complaint Center. (2023, Apr 10).
    
  • The FBI warns of criminal actors posing as Chinese law enforcement officials or prosecutors in financial fraud schemes targeting the US-based Chinese community. Criminals tell victims they are suspects in financial crimes and threaten them with arrest or violence if they do not pay the criminals. Criminals exploit widely publicized efforts by the People’s Republic of China government to harass and facilitate repatriation of individuals living in the United States to build plausibility for their fraud. Criminals typically call victims, sometimes using spoofed numbers to appear as if the call is from the Chinese Ministry of Public Security, one of its localized Public Security Bureaus, or a US-based Chinese Consulate. Criminals may also communicate through online applications.
    

• User space.
• Article: Twitter rolls out encrypted DMs, but only for paying accounts.
  
  • Author: Bill Toulas (2023, May 11).
    
  • Twitter has launched its 'Encrypted Direct Messages' feature allowing paid Twitter Blue sub...