Lawrence Abrams reports: The REvil ransomware operation has likely shut down once again after an unknown person hijacked their Tor payment portal and data leak blog. The Tor sites went offline earlier today, with a threat actor affiliated with the REvil operation posting to the XSS hacking forum that someone hijacked the gang’s domains. Read…
Author: Dissent
Acer under fire: Now hackers claim to have hit Acer Taiwan, too
DESORDEN threat actors are still going after Acer, it seems. In addition to their recent revelation that they exfiltrated 60 GB of data from Acer India — a breach that Acer confirmed — they have alerted DataBreaches.net that they have also successfully attacked Acer in Taiwan. In a statement to DataBreaches.net, the threat actors write:…
Adult students’ SSNs from more than 60 years ago caught up in Ohio breach
One of the recurring themes in this site’s blog posts this year has been the fact that way too many entities not only store old data, but fail to secure it or protect it adequately from malware attacks or other attacks. Today’s unhappy example comes to us from Apollo Career Center (“Apollo”), an adult education…
Twitter suspends two accounts used by DPRK hackers to catfish security researchers
Catalin Cimpanu reports: Twitter has suspended today two accounts operated by North Korean government hackers and used as part of a clever plot to attract security researchers to malicious sites and infect their systems with malware. The accounts —@lagal1990 and @shiftrows13— are part of a long-lived DPRK cyber-espionage campaign that began last year and specifically targets members…
US Treasury said it tied $5.2 billion in BTC transactions to ransomware payments
Catalin Cimpanu reports: The financial crimes investigation unit of the US Treasury Department, also known as FinCEN, said today it identified approximately $5.2 billion in outgoing Bitcoin transactions potentially tied to ransomware payments. FinCEN officials said the figure was compiled by analyzing 2,184 Suspicious Activity Reports (SARs) filed by US financial institutions over the last…
A rough week for Missouri teachers who are notified of not one, but two separate incidents
The Public School and Education Employee Retirement Systems of Missouri has notified 349,246 employees and retirees of a security incident that occurred on September 11. According to their notification letter, an employee’s email account was accessed by an unauthorized individual for less than one hour on that date before IT disabled the account after being…