Press release: TYLER, Texas –A 23-year-old Russian man has been indicted in the Eastern District of Texas for offenses related to operating a cyber-criminal marketplace that sold thousands of stolen login credentials, personal identifiable information, and authentication tools, announced Eastern District of Texas U.S. Attorney Brit Featherston. Igor Dekhtyarchuk, a resident and national of the…
Category: Breach Incidents
Okta’s response to Lapsus$’s claimed hack has people asking, “Why didn’t you tell us in January?”
Yesterday was not a great day for Okta. Their CSO, David Bradbury, issued a statement responding to Lapsus$’s claimed hack, but his statement led to a counter-response by Lapsus$ and even more critically, perhaps, people started asking why, if Okta knew about something in January, they had not disclosed it then. First, here’s Bradbury’s statement:…
Japanese medical online consultation site leaking consumer-submitted images of symptoms
After multiple unsuccessful attempts to get a popular Japanese medical online consultation site to secure a misconfigured bucket, researchers at SafetyDetectives have decided to publicly disclose the leak. Doctors Me provides customers with on-demand access to professional medical advice. People can sign up for a monthly unlimited access plan (for less than $3.00 per month)…
“It took 6 hours to get access to every IT system” of Argentina’s Senate – Vice Society
The web site of Argentina’s senate was hit by a ransomware attack on or about January 12. Unlike other entities that do not disclose quickly, the Senate issued a statement on Twitter about Vice Society’s attack two days later: ?El Senado de la Nación sufrió el 12 de enero a las 4 AM un ataque…
WI: New development in Janesville school district ransomware incident
In October 2021, the School District of Janesville in Wisconsin disclosed that they had experienced a ransomware incident. At the time, they said that no data had been accessed or destroyed and that they had not received any ransom demand. In short order, their claims were challenged on a Russian-language forum where someone calling themself…
WVa: Wheeling Health Right victim of ransomware attack
From the notice on their website: Notice Regarding Recent Data Breach What Happened? On January 18, 2022, Wheeling Health Right discovered that our organization was victimized by a ransomware attack that encrypted our systems. Upon discovery of the security incident, we engaged legal counsel and a data breach remediation firm to conduct an investigation into…