I wonder how successful Maze Team really is. They add a lot of victims to their website. They may consider those victims successful attacks, but the reality is that those victims haven’t paid their ransom, so how well is Maze Team doing financially? I suspect that they’re doing a lot better than we’d hope they’d…
Category: Business Sector
Security lapse at India’s Jio exposed coronavirus symptom checker results
Zack Whittaker reports: Since the start of the outbreak, governments and companies have scrambled to develop apps and websites that can help users identify COVID-19 symptoms. India’s largest cell network Jio, a subsidiary of Reliance, launched its coronavirus self-test symptom checker in late March, just before the Indian government imposed a strict nationwide lockdown to prevent the further…
Dakota Carrier Network hit by Maze ransomware
Benjamin Freed reports: The company that operates a fiber optic network that supports statewide and local government entities across North Dakota was a victim of a recent ransomware attack that included some of the firm’s files being published on a website that attempts to shame victims into paying. Dakota Carrier Network is a consortium of…
Clop ransomware leaks ExecuPharm’s files after failed ransom
Sergiu Gatlan reports: Clop ransomware leaked files stolen from U.S pharmaceutical company ExecuPharm after ransom negotiations allegedly failed. ExecuPharm is a contract research organization (CRO) that provides clinical research support services to companies from the pharmaceutical industry. The company has more than 18,000 global clinical operational specialists in its network and it is one largest…
Spear-phishing campaign compromises executives at 150+ companies
Catalin Cimpanu reports: A cybercrime group operating since mid-2019 has breached the email accounts of high-ranking executives at more than 150 companies, cyber-security firm Group-IB reported today. The group, codenamed PerSwaysion, appears to have targeted the financial sector primarily, which accounted for more than half of its victims; although, victims have been recorded at companies…
“Government” hackers cracked the mail of dignitaries of Estonia
The following is a Google translation of a story that appears on securitylab.ru: For hacking, it was enough for the victim to open a malicious email; no other action was required on her part. Government-sponsored hackers exploited the zero-day vulnerability in the Estonian email service Mail.ee and hacked the accounts of a number of dignitaries….