Jai Vijayan reports: In recent attacks involving the ominously growing RansomHub ransomware, attackers have exploited the so-called ZeroLogon flaw in the Windows Netlogon Remote Protocol from 2020 (CVE-2020-1472) to gain initial access to a victim’s environment. Prior to deploying the ransomware, the attackers have used several dual-use tools, including remote access products from companies like Atera…
Author: Dissent
Daixin Team claims to have breached the Dubai Municipality
Dubai Municipality (Arabic: بلدية دبي) is the Government of Dubai municipal body with jurisdiction over city services and the upkeep of facilities in the Emirate of Dubai, United Arab Emirates and reports directly to the Dubai Executive Council.[1] The agency is led by a Director-General that sits at the Dubai Executive Council. The department has been led by Director-General Eng. Dawood Abdul Rahman Al Hajiri since…
Data breach involving two former Kalamazoo employees under criminal investigation
Here’s your occasional reminder about insider-wrongdoing breaches. Katie Sergent reports: City officials notified all staff of a data breach impacting about 250 current and former city employees, according to Kalamazoo Communications Manager Michael Smith in a statement to News Channel 3 Wednesday. The breach involved two former city employees, and was discovered on March 28…
Critical Incident: London Hospitals Cancel Operations Following Ransomware Incident at Synnovis
James Coker reports: Leading London hospitals have been forced to cancel operations and divert emergency patients following a cyber-attack on a critical supplier. The incident has affected Guy’s and St Thomas’, King’s College Hospital NHS Foundation Trusts and primary care services in South East London, according to a statement from NHS England on June 4….
Google Database Reveals Thousands of Privacy Incidents
Joseph Cox reports: Google has accidentally collected childrens’ voice data, leaked the trips and home addresses of car pool users, and made YouTube recommendations based on users’ deleted watch history, among thousands of other employee-reported privacy incidents, according to a copy of an internal Google database which tracks six years worth of potential privacy and…
Malaysia’s government to amend Personal Data Protection Act to require notification of data breaches
The Sun reports: The government is planning to amend the Personal Data Protection Act of 2010 to include breach notification requirements that compel companies to inform authorities when a data breach happens in commercial transactions, said Digital Minister Gobind Singh Deo. Gobind said his ministry proposes to table the amendment at the next sitting of…