Ben Potter and Carrie LaFrenz report: In the third major corporate security breach in as many weeks, Woolworths is scrambling to contact 2.2 million customers of its MyDeal online marketplace arm whose data has been accessed by an unauthorised user using “compromised” credentials, the supermarkets giant said on Friday evening. […] Of the 2.2 million estimated to…
Category: Business Sector
Authorities name North Korea hacker group, warn of attacks on Japanese crypto assets
The Yomiuri Shimbun reports: The North Korean hacker group Lazarus has conducted cyber-attacks targeting Japanese crypto asset companies, according to the National Police Agency. It is unusual to name a suspected attacker before taking such actions as an arrest, but in this case, authorities have adopted a method called “public attribution,” using it in Japan…
Bits ‘n Pieces (Trozos y Piezas)
Es-CT: Update on Consorci Sanitari Integral Attack by RansomExx Last week, DataBreaches reported an attack on the Consorci Sanitari Integral (CSI) system of hospitals and health centers in Catalonia. Since then, RansomExx claimed responsibility for the attack and claims to have 54 GB of files that include DNI and medical information of patients and employees….
US Airports in Cyberattack Crosshairs for Pro-Russian Group Killnet
Jai Vijayan reports: Hot on the heels of attacks against US state government websites, pro-Russian threat group Killnet on Monday disrupted the websites of multiple US airports in a series of distributed denial-of-service (DDoS) attacks. It also called on similarly aligned groups and individuals to carry out DDoS attacks on other US infrastructure targets, in…
PG&E was publicly exposing partial SSN information of US consumers through its use of Experian Identity Verification questions.
Somehow I missed this one but it’s so significant that even though I am late with linking to it, I hope to make more people aware of it. @Lucky225 writes: I recently discovered PG&E will let you sign up for electricity online without providing your SSN. Their website offered an option for “Alternate Identification”, so…
Hackers target SingTel’s Dialog after huge Optus data breach
Angus Whitley reports: A second Australian business owned by Singapore Telecommunications suffered a cyberattack, compounding the data-security crisis at the company following the huge data breach at mobile phone operator Optus. A hack on technology consulting company Dialog, which SingTel bought earlier this year, may have accessed data on fewer than 20 clients and 1000…