A ransomware group that first emerged in May has added the government of Martinique to its leak site. Although there is no current notice on Martinique’s Facebook page, on May 24, they posted a notice about the cyberattack: A machine translation of the notice reads: #Cyberattack Implementation of the continuity plan On May 16,…
Author: Dissent
Hackers Using MOVEit Flaw to Deploy Web Shells, Steal Data
Exploiting vulnerabilities in file transfer software for businesses and medical practices can result in a treasure trove of valuable data and the opportunity to try to extort oh, so many victims. First it was an Accellion vulnerability, exploited by Cl0p (past coverage). Then it was a Fortra GoAnywhere vulnerability, exploited by Cl0p (past coverage). Now…
Update on GLBA Safeguards Rule in Higher Education
Benjamin Wanger and Pierce T. Cox of BakerHostetler write: On February 9, 2023, the Department of Education Office of Federal Student Aid (“FSA”) issued an electronic notice regarding the Federal Trade Commission’s Final Rule amending the Standards for Safeguarding Customer Information (“Safeguards Rule”) under the Gramm-Leach-Bliley Act (“GLBA”). The amendments to the Safeguards Rule, which go into…
Middlesex Co. Public Schools confirms ransomware attack
Jimmy LaRoue reports: The superintendent for Middlesex County Public Schools confirmed Thursday that the school division was the subject of a recent ransomware attack. “We can confirm that Middlesex County Public Schools recently suffered a ransomware attack,” said Superintendent Dr. Tracy Seitz in a statement to 10 On Your Side. “We took immediate action to…
Orbiter Finance Discord Server Hacked
Mansi Sarvaiya reports: A decentralized cross-rollup layer-2 bridge, Orbiter Finance’s Discord server was compromised by bad actors, who have shared a link to a fraudulent airdrop program. This incident marks the latest targeting of Orbiter Finance. CertiK Alert, a reputable blockchain security and analytics platform, took to Twitter in the early hours of June 1…
Ie: Patients’ info accidentally sent to unidentified individual by UL Hospitals Group
Ben Scallan reports: UL Hospitals Group, responsible for managing six hospitals in the midwest region, announced a significant data breach resulting in the inadvertent sharing of personal and medical information belonging to over 1,000 patients with an unknown third party. The breach occurred in January when a staff member mistakenly sent the data to an…