Julia Weng reports: Hiscox Insurance Co. Inc. can move forward with claims against Warden Grier LLP, which lost a bid to dismiss allegations that fault the law firm’s handling of a hack that exposed the insurer’s data. Read more on Bloomberg. As reported on DataBreaches.net in 2018, thedarkoverlord (“TDO”) had started leaking what they claimed…
Month: July 2020
Blackbaud believes your data is safe from further misuse. Do you?
You may have seen a number of headlines from schools and non-profits disclosing that their students or donors’ information was impacted by a May, 2020 ransomware incident at UK software firm, Blackbaud. According to Blackbaud’s notice: Prior to our locking the cybercriminal out, the cybercriminal removed a copy of a subset of data from our…
A vigilante is sabotaging the Emotet botnet by replacing malware payloads with GIFs
Catalin Cimpanu reports: An unknown vigilante hacker has been sabotaging the operations of the recently-revived Emotet botnet by replacing Emotet payloads with animated GIFs, effectively preventing victims from getting infected. The sabotage, which started three days ago, on July 21, has grown from a simple joke to a serious issue impacting a large portion of the Emotet…
Keizer discloses costs of recovering from recent ransomware attack
When Keizer, Oregon was attacked in June with ransomware, the attackers demanded $48,000, and the city paid. Now Keizer Times reports that the costs of recovering city data and preventing future digital strikes have already exceeded $60,000. Among the costs, which will be detailed more at a later date: — To handle negotiations with the…
Ongoing Meow attack has nuked >1,000 databases without telling anyone why
In March, thousands of elastic search installations were wiped out and all that was left was a calling card, “NightLionSecurity.com.” Now there’s a new round of attacks using a “Meow” calling card as they wipe out ElasticSearch and MongoDB databases. Dan Goodin reports: More than 1,000 unsecured databases so far have been permanently deleted in…
VA sending letter to 1,501 Montana vets about business associate ransomware incident
The Great Falls Tribune reports: The U.S. Department of Veterans Affairs Veterans Health Administration on Thursday announced actions taken to protect veterans’ personal information following a recent privacy breach involving files from the Montana VA Health Care System. Officials said they were notified June 4, by former contractor Benefits Recovery Specialists Inc. of “a data…