William Turton and Kartikay Mehrotra report: The hack that took down the largest fuel pipeline in the U.S. and led to shortages across the East Coast was the result of a single compromised password, according to a cybersecurity consultant who responded to the attack. Hackers gained entry into the networks of Colonial Pipeline Co. on…
Author: Dissent
MI: WMed warns 2,474 employees and beneficiaries enrolled in healthcare coverage of phishing incident
Brad Devereaux reports: WMed has alerted employees, former employees and their beneficiaries covered under employee healthcare coverage about a data security incident caused by phishing that exposed personal information. Someone within the Western Michigan University Homer Stryker MD School of Medicine, or WMed, clicked on a “phishing” link in an email, which allowed outside access…
EpsilonRed ransomware group hits one of India’s financial software powerhouses
Catalin Cimpanu reports: Nucleus Software Exports, an Indian company that provides lending software to banks and retail stores, has suffered a major ransomware attack that crippled some of its internal networks and encrypted sensitive business information. The incident took place last Sunday, on May 30, according to a document the company filed on Tuesday with…
Latvian National Charged for Alleged Role in Transnational Cybercrime Organization
A Latvian national was arraigned in federal court in Cleveland, Ohio, today on multiple charges stemming from her alleged role in a transnational cybercrime organization responsible for creating and deploying a computer banking trojan and ransomware suite of malware known as “Trickbot.” Alla Witte, aka Max, 55, is charged in 19 counts of a 47-count…
Tokyo Games organizers hit by data breach and info leak
Kyodo News reports: The organizing committee for the Tokyo Olympics has become the latest to be hit by a data breach through unauthorized access to an information-sharing tool developed by Fujitsu Ltd., sources familiar with the matter said Friday. Personal information was leaked from a total of about 170 people who are involved in security…
Imperva: 75.9% of stolen data in breaches involve personal information
VB reports: In an analysis of more than 100 of the biggest and most well-known data breaches of the last decade, Imperva Research Labs found that 75.9% of data stolen in these breaches was personally identifiable information (PII). An in-depth analysis of more than 100 of the largest data breaches in the past decade by Imperva Research Labs reveals a bleak…