(translation): The attack was noticed a few days ago and according to a report in the newspaper “Kathimerini”, the Ministry of National Defense and the Police have been involved in the investigation into the incident, while the EYP is monitoring the developments. Initially there was concern about the possibility that the company fell victim to…
Month: February 2021
TR: Hacker attack on Kayseri OSB!
Translation: According to the information received, the hackers or hackers who infiltrated the computers of Kayseri OIZ Directorate last week, locked the files containing important information of the institution and demanded money from the OIZ management in return for giving the passwords. OSB officials reacted to the hackers’ demand for money and referred the issue…
Accellion’s data breach left clients in tough position: pay extortion to criminals, or have their data dumped (with updates)
A breach involving Accellion‘s older file transfer application has left a number of its customers in the unenviable position of not only having a data breach to deal with, but with the added threat that their data and their clients’ data will be dumped by threat actors if they do not pay extortion demands. At…
Unsecured: Jamaica’s immigration website exposed thousands of travelers’ data
Zack Whittaker reports: A security lapse by a Jamaican government contractor has exposed immigration records and COVID-19 test results for hundreds of thousands of travelers who visited the island over the past year. The Jamaican government contracted Amber Group to build the JamCOVID19 website and app, which the government uses to publish daily coronavirus figures and allows…
UPDATED: California DMV halts data transfers with third-party company after Automatic Funds Transfer Services security breach
Update: As BleepingComputer reports, the AFTS attack appears to be the work of the Cuba ransomware threat actor(s) who claim to have exfiltrated “Financial documents, correspondence with bank employees, account movements, balance sheets, tax documents.” They offer to sell the data on their dedicated leak site on the dark web, but do not list any…
MN: School district employees falls for phishing attack; W-2 forms of 677 employees now compromised
David Colburn reports: REGIONAL- ISD 2142 fell prey to a common online phishing scheme on Feb. 4 when a scammer posing as Superintendent Reggie Engebritson used a fraudulent email to obtain the W-2 forms of 677 district employees. Engebritson sent a letter to staff the same day, informing them of the data breach. Read more…