Bicycle Retailer reports: JBI was the victim of a ransomware attack Thursday, shutting down the global wholesale distributor’s website. A representative at JBI told BRAIN none of its customers’ business information was affected because that information is stored off-site. Read more on Bicycle Retailer. h/t, @Chum1ng0
Category: U.S.
MO: Affton School District discloses ransomware attack; current and former employees impacted
On February 25, Affton School District notified its community about a ransomware attack. As part of their notification, they wrote: We do not believe any sensitive information has been accessed and no personal data, financial information, or grades have been found to be compromised. As a routine layer of protection, this information is stored on…
Good Luck Explaining to HHS Why Your PHI is in GitHub’s Vault for the Next 1,000 Years
You may see a number of hospitals and covered entities issuing statements this week about a data security incident involving Med-Data (Med-Data, Incorporated). So far, Memorial Hermann, U. of Chicago, Aspirus, and OSF Healthcare have posted notices. Others should be or may be posting soon. Here’s DataBreaches.net’s exclusive report on the incident. Another Day, Another…
University of Maryland, Baltimore responds to Accellion breach
This week, a number of universities were added to CLOP threat actors’ dark web leak site. They appear to be linked to the Accellion breach in December and January. As a reminder, many of Accellion’s clients used a standalone server with Accellion’s software to transfer large files. The attack did not hit Accellion’s clients’ own…
Man charged for hacking Kansas water utility with intent to harm public
Catalin Cimpanu reports: The US Department of Justice has indicted today a Kansas man on charges of hacking into the computer system of a local water utility and trying to sabotage water processing operations with the intent to harm the local public. According to court documents, the incident took place on March 27, 2019, and…
GA: Cyberattack on Cobb schools enabled by contractor’s weak password, police say
Kristal Dixon reports: An attack on the Cobb County School District’s crisis management system that forced all schools into lockdown last month happened because of a weak password, according the police. The password was not created by a school district employee, but a worker with the AlertPoint security system used by the district, police said….