The U.K.’s Royal Mail was the victim of a cyberattack that significantly impacted international delivery services. But was this attack the work of LockBit 3.0 or not? Those who saw the ransom note said the links in the note pointed to LockBit’s leak site and their chat negotiation site. But as Bleeping Computer reported, the…
Category: Breach Incidents
CL0P adds the New York City Bar Association to their leak site
The CL0P ransomware gang has added the NYC Bar Association to their leak site today. Unsurprisingly, the threat actors have some unkind words for their victim: The New York City Bar is example of one more institution who not take their obligation to secure client, employee and case data seriously. We download more than 1.8tb…
Bits ‘n Pieces (Trozos y Piezas)
ES: City Council of Durango “Completely Paralyzed” by Cyberattack The City Council of Durango in Biscay reports it is “completely paralyzed” by a cyberattack last Saturday. The news site Durangon quotes the Deputy Mayor, Iker Urkiza (machine translation) that the ‘hacking “has been serious” and that it will paralyze their computer systems “for weeks.” According…
NYS DFS Announces $100 Million Settlement with Coinbase; Investigation Found Significant Failings in their Compliance Program
DFS Investigation Found Wide-Ranging and Long-Standing Failures in Coinbase, Inc.’s Anti-Money Laundering Program, Including with Regard to its Know Your Customer/Customer Due Diligence, Transaction Monitoring, and Suspicious Activity Reporting Systems, Among Others Settlement Requires Coinbase to Pay $50 Million Penalty and to Invest an Additional $50 Million in its Compliance Program From the NYS Department…
Email Reveals AR-15 Pistol Brace Company Hit With Data Breach Ahead Of ATF Ruling
Tyler Duden reports: SB Tactical, one of the most popular AR-15 pistol brace manufacturers, appears to have been hit with a data breach, where customer data, including names, addresses, and credit card information, was leaked online. A snapshot of an email from SB Tactical’s customer support has surfaced on Reddit and Twitter in the last few days…
Oregon workers’ compensation claimants and policyholders may have had their personal information hacked
Mike Rogoway reports that Oregon’s worker’s compensation insurer, SAIF Corp., experienced a breach in October that potentially compromised policyholders’ information and workers’ compensation claimants’ personal and medical information. On their breach-related site maintained for them by IDX, SAIF explains that on October 24, there was a brief period during which an unauthorized individual or individuals…