Brian Krebs reports: Business-to-business payments provider Billtrust is still recovering from a ransomware attack that began last week. The company said it is in the final stages of bringing all of its systems back online from backups. With more than 550 employees, Lawrence Township, N.J.-based Billtrust is a cloud-based service that lets customers view invoices, pay, or…
Category: U.S.
Phishing Incident at Kalispell Regional Healthcare May Have Affected 129,000 Patients
Myers Reece reports: Beginning today, Kalispell Regional Healthcare is mailing out letters to nearly 130,000 patients whose personal information may have been involved in a data breach over the summer. Patients’ personal information may have included their name, address, medical record number, date of birth, telephone number, email address, medical history and treatment information, date…
Another Civil Case Launched Against AT&T for Allegedly Failing to Prevent Crypto Theft
Cali Haan reports: A plaintiff called Seth Shapiro is suing telco giant AT&T for its role in allegedly allowing hackers to access his cellphone on four occasions and enable the theft of $1.8 million USD in cryptocurrencies from his crypto exchange accounts. SIM-swapping is a type of hack in which cybercriminals arrange with a telco employee to…
Equifax used ‘admin’ as username and password for sensitive data: lawsuit
Ethan Wolff-Mann reports: Equifax used the word “admin” as both password and username for a portal that contained sensitive information, according to a class action lawsuit filed in federal court in the Northern District of Georgia. The lawsuit, filed in January, went viral on Twitter Friday after Buzzfeed reporter Jane Lytvynenko came across the detail. Read more…
SC: Ransomware attack may be affecting 911, emergency dispatch in Jasper Co.
Kristen Rary reports: Earlier this week it was confirmed Jasper County had a cyber attack on their countywide systems, including email and emergency response systems. At that time, county officials said 911 and emergency dispatch services were not having any issues as a result of the cyberware attack. Now, that may not be the case….
Mishandling of Veterans’ Sensitive Personal Information on VA Shared Network Drives — Audit by Veterans Affairs OIG
VA OIG 19-06125-218 | October 17, 2019 From the Executive Summary: The OIG team found that veterans’ sensitive personal information was left unprotected on two shared network drives, where it was accessible to VSO officers who did not represent those veterans. Senior Office of Information and Technology (OIT) representatives told the team that other authenticated…