Sergiu Gatlan reports: The Clop ransomware gang claims to be behind recent attacks that exploited a zero-day vulnerability in the GoAnywhere MFT secure file transfer tool, saying they stole data from over 130 organizations. The security flaw, now tracked as CVE-2023-0669, enables attackers to gain remote code execution on unpatched GoAnywhere MFT instances with their administrative…
Author: Dissent
Employee personal data exposed in NJ school district cyber breach
Dan Alexander reports: A New Jersey public school district’s data breach in December exposed personal data of employees — but those affected were not notified until the end of January. The breach occurred in the Bridgewater-Raritan Regional School District between Dec. 10 and 12 and exposed the names and Social Security numbers of district employees and…
Hack attack forces Modesto Police off computers, back onto radio, report says.
Les Hubbard reports: An attack on City of Modesto computer systems has left the Modesto Police Department embracing “old school policing” techniques to manage calls for service and transporting of criminals for a number of days. Read more at The Sun. h/t, Brett Callow
Minneapolis Public Schools was nearly conned out of $500K
Fox9 reports: At the height of the pandemic, one of Minnesota’s largest school districts fell victim to cyber fraud and nearly lost half a million dollars in the process. The previously unreported crime targeted Minneapolis Public Schools in April 2020, when schools and administration offices were vacant due to COVID-19. Fox9 video. h/t, Doug Levin
UMass Memorial Health settles lawsuit claims from 2020 hack
Another week, another litigation settlement. Top Class Actions reports that UMass Memorial Health Center agreed to pay $1.2 million to resolve claims it failed to protect consumers from a hacking incident and data breach that occurred from June 24, 2020 to January 7, 2021. UMass informed consumers of the breach in October 2021. The breach…
Dallas Central Appraisal District paid $170,000 to Royal ransomware attackers
Graham Cluley reports: A Dallas state agency has admitted to paying $170,000 to hackers after it suffered a ransomware attack. The Dallas Central Appraisal District (DCAD) that determines the value of all of the county’s real and personal property for taxation purposes, publicly disclosed that it had been hacked on November 8, 2022. The agency had…