The Maze Team attackers continue to announce more of their ransomware victims that have not complied with their ransom demands, and they continue to dump data from those who do not pay them. When I checked their site again today, I noticed that they had announced that they have dumped all their files on the…
Category: Breach Incidents
Greenville Water target of international cyber-attack, officials say
Anne Newman reports: Greenville Water was the recent target of an international cyber-attack, according to Emerald Clark, with Greenville Water. According to Clark, the attack caused technical difficulties for staff and a temporary inconvenience for customers. Read more on WYFF.
We’re dung for! Hackers hit firms with ransomware by exploiting Shitrix flaw
Graham Cluley writes: About two weeks ago alarm bells rang over a newly-discovered (and unpatched) flaw in Citrix servers. The vulnerability, technically dubbed CVE-2019-19781 but also known as “Shitrix”, was found to be present on Citrix Application Delivery Controller and Citrix Gateway servers (formerly known as Netscaler ADC and Netscaler Gateway respectively) commonly used on corporate networks. Then we…
Maze Team continues its campaign of naming, shaming, and dumping victims’ data while other attackers adopt the same model
In May, 2019, Lawrence Abrams of Bleeping Computer reported on threat actors using Maze ransomware, a then-new variant of ChaCha ransomware. As reported by Abrams, Jérôme Segura had found that the ransomware was being dropped by the Fallout exploit kit. In October, researchers also noted that it was being dropped using the Spelevo exploit kit. Since…
Security researchers — and journalists — need legislative protection in India for disclosing vulnerabilities
If there is anything positive at all about the legal bullshit 1to1Help,net has perpetrated to cover up their data leak and to deflect blame, it is the support I have received from the Internet Freedom Foundation in India. But before diving into that more, a quick update on 1to1Help’s shameful litigation: After reading the court…
Smart cities with not-so-smart security — again!
Smart cities are a very hot topic these days as we have seen reports of facial detection and state surveillance in China as well as other Asian countries and Ecuador. Recently we have also seen news about an Alibaba-owned project called City Brain that has advanced video and processing ability for facial detection, real-time information…