Ross Kelly reports: The Pension Protection Fund (PPF) has confirmed that data belonging to current and former employees has been exposed in the wake of the GoAnywhere breach. In a statement to IT Pro, the fund, which manages pension assets for nearly 300,000 clients, said it has informed affected staff and is providing support and…
Category: Hack
More victims possibly identified in GoAnywhere vulnerability incident
Zack Whittaker and Carly Page report: The number of victims affected by a mass-ransomware attack, caused by a bug in a popular data transfer tool used by businesses around the world, continues to grow as another organization tells TechCrunch that it was also hacked. Canadian financing giant Investissement Québec confirmed to TechCrunch that “some employee personal…
Stung by Free Decryptor, Ransomware Group Embraces Extortion
Mathew J. Schwartz reports: Not all ransomware groups wield crypto-locking malware. In their continuing quest for extortionate profits, some have moved away from encryption and pressure victims purely by threatening to leak stolen data unless they receive a ransom payment. This seems to have been the case for BianLian, a prolific ransomware group that emerged…
Attack on WB CTC targeted financial info in Skyward system
Update: BlackCat has claimed responsibility for the attack. There’s an update to the data breach affecting Wilkes-Barre Career and Technical Center, previously noted on this site. Mark Guydish reports: Guariglia said the FBI is still investigating and that there is no new information on what happened or who conducted the attack, which appeared to target…
Top of the World Ranch Treatment Center notifies patients after email account compromise
Top of the World Ranch Treatment Center in Illinois has disclosed that a November 17 compromise of a business email account resulted in protected health information being accessible to an attacker. The attack was detected quickly and shut down within hours, and the treatment center’s investigation could not determine if any data was exfiltrated during…
Ferrari hacked; doesn’t pay $1 million ransom demand
Not only was Ferrari dealing with grid penalty and car development problems with their F1 car this past week, but it now seems they were also dealing with a cybersecurity incident. Ferrari has revealed that it was the victim of a data breach and extortion demand. The firm’s email to customers, reproduced below, states that…