Note: This joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort to publish advisories for network defenders that detail various ransomware variants and ransomware threat actors. These #StopRansomware advisories include recently and historically observed tactics, techniques, and procedures (TTPs) and indicators of compromise (IOCs) to help organizations protect against ransomware. Visit stopransomware.gov to…
Category: U.S.
URLs Are NOT Passwords, and Sadly, That Needed to Be Said (Stolowitz vs. Nuance Communications)
In 2014, Nuance Communications discovered that anyone could access protected health information on one of its platforms. After the situation persisted for years, a former employee decided to submit a whistleblower complaint to HHS. For his efforts, he spent more than one year fending off threatened federal hacking charges, even though no hacking was involved….
Cyberattack takes down L.A. Unified operations. Schools will open on Tuesday
Updated Sept. 8: Vice Society has claimed responsibility for the attack. As Jeremy Kirk commented, it was somewhat expected given that CISA published an advisory about Vice Society after the attack. Original post: Howard Blume reports: A cyberattack brought down the computer systems of the Los Angeles Unified School District over the weekend, but officials…
Hackers acquire info on current and former students and staff at Savannah College of Art and Design
Dealing with a patchwork of state data breach notification laws can be challenging. Dealing with state laws, federal regulations, and the GDPR can be even more difficult. But that may be the situation for Savannah College of Art and Design (SCAD), a private school in Georgia that enrolls students from other states and has a…
KeyBank: Hackers of third-party provider stole customer data
Frank Bajak reports: Hackers stole personal data including Social Security numbers, addresses and account numbers of home mortgage holders at KeyBank, the bank reports, in the breach of a third-party vendor that serves multiple corporate clients. The hackers obtained the information on July 5 after breaking into computers at the insurance services provider Overby-Seawell Company,…
Bits ‘n Pieces, Saturday morning edition
In February 2022, NFL’s San Francisco 49ers confirmed a ransomware attack by BlackByte. This week they started mailing notification letters to more than 20,000 people. * * * In a bizarre incident, hackers broke into the ride-hailing service provider Yandex Taxi’s software and sent dozens of cars to the same location, resulting in a traffic…