Sergiu Gatlan reports: A digitally signed and trojanized version of the 3CX Voice Over Internet Protocol (VOIP) desktop client is reportedly being used to target the company’s customers in an ongoing supply chain attack. 3CX is a VoIP IPBX software development company whose 3CX Phone System is used by more than 600,000 companies worldwide and…
Author: Dissent
Data stolen from Florida sheriff’s office leaked by LockBit ransomware group
Jonathan Greig reports: The LockBit ransomware group has leaked data it stole from Washington County Sheriff’s Office in northeastern Florida. The Record did not view the stolen data but cybersecurity experts said it included warrants and information on employees. Washington County has more than 25,000 residents and is about 45 minutes away from Panama City,…
Dutch railway NS warns 780,000 customers about data breach
NL Times reports: The Dutch national railway, NS, has warned about 780,000 customers that their personal data may be involved in a data breach.The train operator works closely with market research firm Blauw. External parties gained access to personal data at via a software supplier for that company. For example, e-mail addresses, telephone numbers or…
Google reveals spyware attack on Android, iOS, and Chrome
Habiba Rashid reports: The primary target of this spyware campaign were the unsuspecting users in Italy, Malaysia, and Kazakhstan. Google’s Threat Analysis Group (TAG) has discovered two highly-targeted mobile spyware campaigns that use zero-day exploits to deploy surveillance software against iPhone and Android smartphone users. Google TAG discovered two “distinct, limited, and highly targeted” campaigns…
ChatGPT Suffers First Data Breach, Exposes Personal Information
Dom Nicastro reports: OpenAI’s ChatGPT has suffered its first major personal data breach. The breach came during a March 20 outage and exposed payment-related and other personal information of 1.2% of the ChatGPT Plus subscribers who were active during a specific nine-hour window, according to a blog post by OpenAI Friday, March 24. “In the hours before we…
KS: Newton schools closed after network security breach
KFDI reports: The Newton school district cancelled all classes today after a computer network breach on Tuesday. So far, district officials have not said exactly what happened or what data may have been accessed. The school district says some computers are being kept offline until it can be sure they are safe to use. Newton…