Update to CRA email removal: 100k online accounts were suspended as a precaution when login credentials were found being sold on dark web forums. No breach.
SolarWinds Update: per Bleeping Computer’s article today, the SolarWinds attackers could get access to source code for some components used by Azure, Intune and Exchange. It could lead to gaining API keys, credentials and security tokens embedded in the source code. I’ll just leave that with you 😲
This is significant because North Korea has shifted its targets to cryptocurrency and exchanges to make some coin – bitcoin. Assistant Attorney General John C. Demers summed it up best:
“North Korea’s operatives, using keyboards rather than guns, stealing digital wallets of cryptocurrency instead of sacks of cash, are the world’s leading bank robbers”
But remember – this is a nation equipped with and prepared to use destructive malware and are motivated by revenge as well as finances.