According to their website, The Agromart Group in Canada provides crop nutrients, seed, crop protection products, custom application and associated services to agricultural producers across Eastern Canada. Last month, they experienced a ransomware attack by the Sodinokibi/REvil threat actors. That in and of itself would be newsworthy, but then the threat actors decided to try…
Category: Business Sector
Sekhmet ransomware team claims to have hit international IT firm “very hard”
Sekhmet ransomware operators claim to have hit an international IT firm, Excis, “very hard.” The attack reportedly occurred on May 30, and the threat actors are pressing hard to get the firm to pay an undisclosed amount of ransom. The attack was revealed yesterday on Sekhmet’s website. We are sharing a big part of their…
Amtrak resets user passwords after Guest Rewards data breach
Sergiu Gatlan reports: The National Railroad Passenger Corporation (Amtrak) disclosed a data breach that led to the exposure of personal information of some Guest Rewards members. … “On the evening of April 16, 2020, Amtrak determined that an unknown third party gained unauthorized access to certain Amtrak Guest Rewards accounts,” Amtrak Guest Rewards Senior Director…
Hacker leaks database of Daniel’s Hosting, dark web provider
Catalin Cimpanu reports: A hacker has leaked online today the database of Daniel’s Hosting (DH), the largest free web hosting provider for dark web services. The leaked data was obtained after the hacker breached DH earlier this year, on March 10, 2020. At the time, DH owner Daniel Winzen told ZDNet the hacker breached his portal,…
Ca: Privacy breach at Manitoba Agricultural Services Corporation
The Brandon Sun reports: The Manitoba Agricultural Services Corporation is notifying clients of a privacy breach of personal data that occurred on May 26. An attachment containing the name and contact information of AgriInsurance clients was attached in error to an email sent to 134 producers in Manitoba, the corporation said in a news release….
India’s popular BHIM payments platform reportedly leaks 7M users’ data (UPDATED with NPCI denial)
Ivan Mehta reports: A data leak from India’s BHIM payment app exposed personal data of 7 million Indians including addresses, scans of Aadhar IDs, and caste certificates. A report from cybersecurity company VPN Mentor suggests that this 409GB database was stored in a misconfigured AWS S3 bucket, making all data publicly accessible. The report noted that the…