Matthew Connaster reports: CDK Global reportedly paid a $25 million ransom in Bitcoin after its servers were knocked offline by crippling ransomware. Last week, CDK restored services to car dealerships across the US after a two-week outage caused by a “cyber incident” that looked a lot like a ransomware infection. The shutdown of CDK’s software platform caused…
Category: Breach Incidents
Au: Healthed data breach exposes personal details
Michelle Wisbey reports: The personal details of a large number of GPs have been published online, in a data breach leaving doctors feeling ‘significantly concerned’. Australian healthcare educator Healthed confirmed that late on Sunday, 14 July, the company became aware of ‘a vulnerability within the Healthed website’ It traced this to work undertaken by a…
Data breach exposes millions of mSpy spyware customers
Zack Whittaker reports: A data breach at the phone surveillance operation mSpy has exposed millions of its customers who bought access to the phone spyware app over the past decade, as well as the Ukrainian company behind it. Unknown attackers stole millions of customer support tickets, including personal information, emails to support, and attachments, including…
State attorneys general send warnings of Change Healthcare breach, urge residents to respond
Read Change Healthcare’s Substitute Notice. Individual notices will go out at the end of July, but they may not have your address to notify you individually. Chad Van Alstin writes: Multiple state attorney generals have sent notices, informing residents about the Change Healthcare breach and urging them to enroll in the credit monitoring and identity…
Ph: 42 million people possibly affected by 2023 Philippine Health Insurance cyberattack
Vivienne Gulla reports: The records of around 42 million individuals are possibly affected by the 2023 data breach on Philippine Health Insurance Corporation (PhilHealth), according to the National Privacy Commission (NPC). NPC’s Maria Theresita Patula issued the statement during Monday’s oversight hearing of the House Committee on Appropriations regarding the budget of PhilHealth and the…
Operation Morpheus: Europol coordinates global action against criminal abuse of Cobalt Strike
Europol issued the following press release on July 3: Law enforcement has teamed up with the private sector to fight against the abuse of a legitimate security tool by criminals who were using it to infiltrate victims’ IT systems. Older, unlicensed versions of the Cobalt Strike red teaming tool were targeted during a week of…