Some of you will recall that on a few occasions, DataBreaches has collaborated with Dutch researcher Jelle Ursem (aka @SchizoDuckie) to report on entities in the medical sector who were leaking their login credentials in GitHub repositories (see “No Need to Hack When It’s Leaking” and “Good Luck Explaining to HHS Why Your PHI is…
Author: Dissent
Israeli company Candiru allegedly behind cyberattacks against journalists
Alden Tabac reports: A zero-day vulnerability in Google’s Chrome web browser was discovered on July 1 when it was used to target journalists in the Middle East, according to cybersecurity company Avast. The majority of the attacks took place in Lebanon. “Based on the malware and TTPs used to carry out the attack, we can confidently…
Tenet Health cyberattack, monthlong outage led to $100M in ‘unfavorable impact’
Jessica Davis reports: The April “cybersecurity incident” that led to several weeks of downtime and service delays at Tenet Healthcare facilities caused $100 million in unfavorable impact. The hefty price tag was brought on by lost revenues from interruptions to business operations and remediation. Tenet is one of the largest hospital care service providers in…
Digital security giant Entrust breached by ransomware gang
Lawrence Abrams reports: Digital security giant Entrust has confirmed that it suffered a cyberattack where threat actors breached their network and stole data from internal systems. Entrust is a security firm focused on online trust and identity management, offering a wide range of services, including encrypted communications, secure digital payments, and ID issuance solutions. Depending…
An Entire Canadian Town Is Being Extorted By Ransomware Cyber Criminals
Lane Babuder reports: Ransomware attacks have been on the rise. This time around, the small Ontario, Canada town of St. Marys has been targeted. The ransomware organization behind the attack seems to be LockBit. So far though, no ransom has been paid. The town itself claims that most city functions are still operational and staff…
Verified Twitter Vulnerability Exposes Data from 5.4 Million Accounts
Sven Taylor reports: A verified Twitter vulnerability from January has been exploited by a threat actor to gain account data allegedly from 5.4 million users. While Twitter has since patched the vulnerability, the database acquired from this exploit is now being sold on a popular hacking forum, posted earlier today. Back in January, a report…