Your insider threat reminder comes from Mumbai this morning. Vinay Dalvi reports that Mumbai police filed an FIR against two ex-employees of Baccarose Perfume and Beauty Products Private Limited in Worli for allegedly stealing the firm’s confidential data and sharing it with a rival firm. The news report names those accused and provides some details…
Category: Business Sector
Developing: Blue Yonder ransomware attack claimed by Termite
Termite threat actor(s) have now claimed responsibility for the Blue Yonder ransomware attack that has caused widespread impact. They provide no proof as yet, but a note posted on their dark web leak site several hours ago says, “Our team got 680gb of data such as DB dumps Email lists for future attacks (over 16000)…
Deloitte Hacked – Brain Cipher Ransomware Group Allegedly Stole 1 TB of Data (1-DISPUTED)
Balaji N reports: Notorious ransomware group Brain Cipher has claimed to have breached Deloitte UK, allegedly exfiltrating over 1 terabyte of sensitive data from the professional services giant. Brain Cipher is a ransomware group that emerged in June 2024, quickly gaining notoriety for its cyberattacks on organizations worldwide. Notably, it was responsible for a significant attack on…
Express Services disclosed a data breach. One month later, they learned they had a second data security problem.
Express Employment Professionals (“Express Pros“) describes itself as a leading staffing agency in the U.S., “specializing in matching job seekers with the best jobs for their skills and experience.” Express Pros is the flagship brand for Express Services and conducts business across the U.S., Canada, South Africa, Australia, and New Zealand. Express Pros operates as…
U.S. officials urge Americans to use encrypted apps amid unprecedented cyberattack
Kevin Collier reports: Amid an unprecedented cyberattack on telecommunications companies such as AT&T and Verizon, U.S. officials have recommended that Americans use encrypted messaging apps to ensure their communications stay hidden from foreign hackers. The hacking campaign, nicknamed Salt Typhoon by Microsoft, is one of the largest intelligence compromises in U.S. history, and it has…
Failure to terminate access can be costly. Very costly.
Earlier today, DataBreaches posted an HHS OCR announcement of a settlement with a HIPAA covered entity. A former contractor had accessed its electronic medical record system on three occasions without authorization to retrieve PHI for use in potential fraudulent Medicare claims. OCR imposed a monetary penalty of $1.19 million for the entity’s failure to: conduct…