The same hacking group that hit Country Group Securities (CGSEC) in Thailand has revealed a recent attack on Mono Next Public Company Limited, a media and content conglomerate in Thailand. As described by Thailand’s Securities and Exchange Commission, Mono Group divides its businesses into 5 business operations MONO29 (Digital TV business), MONOMAX (Video on Demand…
Category: Breach Incidents
Anti-Secrecy Activists Publish a Trove of Ransomware Victims’ Data
Andy Greenberg reports: For years, radical transparency-focused activists like WikiLeaks have blurred the line between whistle-blowing and hacking. Often, they’ve published any data they consider to be of public interest, no matter how questionable the source. But now one leak-focused group is mining a controversial new vein of secrets: the massive caches of data stolen by ransomware crews and…
“Without Undue Delay, Part 1:” Update on earlier ransomware cases
In November, DataBreaches.net published a commentary arguing that patients need to be notified sooner of ransomware dumps even if HIPAA would seem to allow up to 60 days. As a companion to that piece, this site looked at 30 claimed ransomware attacks on U.S. healthcare entities that had been revealed on dedicated leak sites by…
Attacks targeting healthcare organizations spike globally as COVID-19 cases rise again– Researchers
Check Point writes: At the end of October 2020, we reported that hospitals and healthcare organizations had been targeted by a rising wave of ransomware attacks, with the majority of attacks using the infamous Ryuk ransomware. This followed a Joint Cybersecurity Advisory issued by the CISA, FBI and HHS, which warned of an increased and imminent cybercrime threat to US hospitals…
Dickey’s Barbecue Pit provides an update on its breach
On October 15, Gemini Advisory reported that the Joker’s Stash dark web marketplace had uploaded its then-latest breach, titled “BLAZINGSUN.” Gemini Advisory determined that the compromised point of purchase (CPP) was Dickey’s Barbecue Pit, a US-based restaurant franchise. Gemini reported on their findings here, and in their annual write-up, they reported that while Joker’s Stash…
Backdoor account discovered in more than 100,000 Zyxel firewalls, VPN gateways
With profound apologies to Catalin Cimpanu for previously posting a plagiarized copy of his reporting, here is his report: More than 100,000 Zyxel firewalls, VPN gateways, and access point controllers contain a hardcoded admin-level backdoor account that can grant attackers root access to devices via either the SSH interface or the web administration panel. The…