Ben Potter and Carrie LaFrenz report: In the third major corporate security breach in as many weeks, Woolworths is scrambling to contact 2.2 million customers of its MyDeal online marketplace arm whose data has been accessed by an unauthorised user using “compromised” credentials, the supermarkets giant said on Friday evening. […] Of the 2.2 million estimated to…
Category: Hack
Authorities name North Korea hacker group, warn of attacks on Japanese crypto assets
The Yomiuri Shimbun reports: The North Korean hacker group Lazarus has conducted cyber-attacks targeting Japanese crypto asset companies, according to the National Police Agency. It is unusual to name a suspected attacker before taking such actions as an arrest, but in this case, authorities have adopted a method called “public attribution,” using it in Japan…
New Mexico’s Cybersecurity Office Investigating Unauthorized Access To Information Systems At State Agency
The Department of Information Technology’s (DoIT) Cybersecurity office is investigating unauthorized access at the state’s Regulation and Licensing Department (RLD). The state continues to investigate the situation, but is confident that any unauthorized access has been isolated and mitigated. Read more at Los Alamos Daily Post.
A cyber attack breached some Latter-day Saint member data.
Tad Walch reports: A suspected state-sponsored cyberattack on The Church of Jesus Christ of Latter-day Saints in March successfully obtained the personal data of some church members, employees and contractors, but law enforcement authorities believe the risk to individuals is low, the church said in a release Thursday. The breach did not include banking information…
Public housing assistance tenants in Indianapolis fear eviction, compromised bank accounts after cyber attack
Russ McQuaid reports: Public housing residents, Section 8 tenants, landlords and vendors all fear the loss of sensitive personal and financial information and discontinued funding or support as a result of the hack of the Indianapolis Housing Agency’s information system last week by cyber thieves. [..] The personal information of approximately 25,000 IHA residents plus the…
Eventus WholeHealth notifies patients of breach
Eventus WholeHealth, PLLC (“Eventus”) provides integrated primary care and mental health services to medically vulnerable adults. In a press release issued this week, they disclose a breach involving protected health information. “On June 1, 2022, we observed suspicious activity associated with a single Eventus email account, despite multifactor authentication on the account.” Comment: That statement…