Mark Fowser reports: Worcester County has discovered a breach of the county government email account which contained limited personal information belonging to about 3,000 government and board of education employee and retiree accounts. Cybersecurity professionals discovered the breach while conducting a forensic investigation into a phishing incident that occurred between November 10th and November 20th,…
Author: Dissent
Purported Elgin County data posted online by ransomware group: cyber threat expert
Matthew Trevithick reports: The cybersecurity incident that has left Elgin County’s website and email system down since the start of the month may have been the result of a ransomware attack involving a notorious Russia-based ransomware syndicate, Global News has learned. A cyber threat expert says data purporting to belong to the county was posted to the website of the ransomware group…
Current, former Lakota Local Schools students possibly impacted by third-party data breach
Jared Goffinet reports on a third-party breach affecting some Ohio schools: A ransomware attack of a third-party data company may impact some current and former Lakota Local Schools students. Battelle for Kids was the recent victim of a data breach, according to the district. Battelle for Kids is a company that houses student’s state testing…
US offers bounty for Sandworm, the Russian hackers blamed for destructive cyberattacks
Zack Whittaker reports: The U.S. government has stepped up its hunt for six Russian intelligence officers, best known as the state-backed hacking group dubbed “Sandworm,” by offering a $10 million bounty for information that identifies or locates its members. The Sandworm hackers — who work for a division of Russia’s GRU, the country’s military intelligence division — are known…
Microsoft discloses onslaught of Russian cyberattacks on Ukraine
Raphael Satter, Christopher Bing and James Pearson report: Russian government hackers carried out multiple cyber operations against Ukraine that appeared to support Moscow’s military attacks and online propaganda campaigns, Microsoft (MSFT.O) said in a report on Wednesday. The reported intrusions – some of which have not been previously disclosed – suggest that hacking has played a bigger…
Cybercriminals Using New Malware Loader ‘Bumblebee’ in the Wild
Ravie Lakshmanan reports: Cybercriminal actors previously observed delivering BazaLoader and IcedID as part of their malware campaigns are said to have transitioned to a new loader called Bumblebee that’s under active development. “Based on the timing of its appearance in the threat landscape and use by multiple cybercriminal groups, it is likely Bumblebee is, if…