Sam Biddle reports: Marcel Lehel Lazar walked out of Federal Correctional Institute Schuylkill, a Pennsylvania prison, in August 2021. The 51-year-old formerly known only as Guccifer had spent over four years incarcerated for an email hacking spree against America’s elite. Though these inbox disclosures arguably changed the course of the nation’s recent history, Lazar himself…
Category: U.S.
Home Care Providers of Texas discloses ransomware incident affecting more than 124,000
Home Care Providers of Texas (DPP II, LLC), has disclosed a ransomware incident to the Texas Attorney General’s Office. According to their notification, unnamed threat actors accessed patient information between June 25 and June 29. The breach was detected on June 29 when files were encrypted. In addition to encrypting some files, the threat actors…
CL0P adds the New York City Bar Association to their leak site
The CL0P ransomware gang has added the NYC Bar Association to their leak site today. Unsurprisingly, the threat actors have some unkind words for their victim: The New York City Bar is example of one more institution who not take their obligation to secure client, employee and case data seriously. We download more than 1.8tb…
SEC sues Covington law firm for names of 300 clients caught up in hack
Andrew Goudsward reports: The U.S. Securities and Exchange Commission has sued law firm Covington & Burling for details about nearly 300 of the firm’s clientsd whose information was accessed or stolen by hackers in a previously undisclosed cyberattack, court documents show. Hackers associated with the Hafnium cyber-espionage group, which has alleged ties to the Chinese…
Ransomware attack exposes California transit giant’s sensitive data
Matt Kapko reports: A ransomware attack against San Francisco’s Bay Area Rapid Transit exposed highly sensitive and personal data after a threat group leaked the records Friday. The nation’s fifth-largest transit system by ridership, and largest in California, remains operational. Vice Society, a prolific ransomware group, claimed responsibility for the attack on Friday when it…
Update about an alleged incident regarding Twitter user data being sold online
From Twitter, today: …. In response to recent media reports of Twitter users’ data being sold online, we conducted a thorough investigation and there is no evidence that data recently being sold was obtained by exploiting a vulnerability of Twitter systems. We also want to share an update about an incident that took place earlier this year,…