Aaron Sanderford reports: Nebraska on Monday became the first state to sue Tennessee-based Change Healthcare over the company’s massive data breach that cost at least 575,000 Nebraskans their personal information and medical records. … The breach was blamed on a low-level employee who had his or her login credentials hacked. Nebraska Attorney General Mike Hilgers…
Category: Hack
Clop ransomware claims responsibility for Cleo data theft attacks
Lawrence Abrams reports: The Clop ransomware gang has confirmed to BleepingComputer that they are behind the recent Cleo data-theft attacks, utilizing zero-day exploits to breach corporate networks and steal data. Cleo is the developer of the managed file transfer platforms Cleo Harmony, VLTrader, and LexiCom, which companies use to securely exchange files between their business partners…
Boston University and Feds Investigating Hacking of Framingham Heart Study Data
Molly Callahan reports: Boston University’s renowned Framingham Heart Study (FHS) was breached by hackers, who gained access to the data of participants—both living and deceased—of the country’s longest running, multigenerational heart study. BU officials say the hackers gained access to the study’s server, but that information technology specialists from BU and FHS were able to…
Rhode Island Residents’ Data Breached in Large Cyberattack; Data May Be Leaked Soon
Aimee Ortiz reports: The personal and private information of possibly hundreds of thousands of people who applied for government assistance in Rhode Island could be in the hands of hackers after a huge cyberattack, state officials said on Friday. The cybercriminals said to be behind the attack threatened to release the data unless they received…
Hackers take a bite out of Krispy Kreme
Jonathan Wheatley reports: Krispy Kreme said a cyber security attack has disrupted its online operations in the part of the US, as the doughnut maker warned it would have a material impact on its business. The US company said on Wednesday that it had been notified on November 29 of “unauthorised activity” in part of…
Hackers are exploiting a flaw in popular file-transfer tools to launch mass hacks, again
Carly Page reports: Security researchers are warning that hackers are actively exploiting another high-risk vulnerability in a popular file transfer technology to launch mass hacks. The vulnerability, tracked as CVE-2024-50623, affects software developed by Illinois-based enterprise software company Cleo, according to researchers at cybersecurity company Huntress. The flaw was first disclosed by Cleo in a security…