On April 15, Debra Cassens Weiss reported: Departing lawyers who downloaded a “treasure trove” of proprietary materials from their Boston law firm may be liable for unfair or deceptive business practices, the Massachusetts Supreme Judicial Court has ruled. The court ruled for the Governo Law Firm in its lawsuit against a group of nonequity partners…
Category: Business Sector
UK rail network Merseyrail likely hit by Lockbit ransomware
Lawrence Abrams reports: UK rail network Merseyrail has confirmed a cyberattack after a ransomware gang used their email system to email employees and journalists about the attack. Merseyrail is a UK rail network that provides train service through sixty-eight stations in the Liverpool City Region in England. Read more on BleepingComputer.
Fourth time’s a charm – OGUsers hacking forum hacked again
Lawrence Abrams reports: Popular hacking forum OGUsers has been hacked for its fourth time in two years, with hackers now selling the site’s database containing user records and private messages. OGUsers is a hacking forum known for the sale of stolen social media accounts hacked through SIM-swapping attacks, credential stuffing attacks, and other means. More recently, OGUsers members…
DigitalOcean says customer billing data accessed in data breach
Zack Whittaker reports: DigitalOcean has emailed customers warning of a data breach involving customers’ billing data, TechCrunch has learned. The cloud infrastructure giant told customers in an email on Wednesday, obtained by TechCrunch, that it has “confirmed an unauthorized exposure of details associated with the billing profile on your DigitalOcean account.” The company said the…
Experian API Exposed Credit Scores of Most Americans
Brian Krebs reports: Big-three consumer credit bureau Experian just fixed a weakness with a partner website that let anyone look up the credit score of tens of millions of Americans just by supplying their name and mailing address, KrebsOnSecurity has learned. Experian says it has plugged the data leak, but the researcher who reported the finding says…
Ransomware gang targets Microsoft SharePoint servers
Catalin Cimpanu reports: The group behind the attacks targeting SharePoint servers is a new ransomware operation that was first seen at the end of 2020. The group is tracked by security vendors under the codenames of Hello or the WickrMe ransomware—because of its use of Wickr encrypted instant messaging accounts as a way for victims to reach out and…