Auditi Guha reports: The Orange Southwest Supervisory District’s website was hacked Saturday and inundated with “hate speech, symbols, and photographs targeting transgender invidividuals [sic],” superintendent Layne Millington wrote community members on Saturday. The incident prompted district leaders to disable its website and social media accounts, Millington wrote, and to refer the matter to local…
Category: Hack
Thailand’s THE ICON GROUP hacked by DESORDEN
DESORDEN Group’s attacks on ASEAN businesses continue. This week, they disclosed a hack of The Icon Group in Thailand. In a statement on a popular hacking forum, DESORDEN writes: This data breach involved 161 GB of databases and files, including personal information of 264,128 customers, with their full name, ID card number, bank account…
Mexico confirms hack of military records, president’s health information
If you have been reading @Chum1ng0’s weekly “Bits n’ Pieces (Trozos y Piezas)” column on Fridays, you have already read about the Guacamaya group’s hack and leak of government files from Chile and other Latam countries. The incident has received public attention in Chile, where some have proposed a national cybersecurity agency. The Mexican government…
Bits ‘n Pieces (Trozos y Piezas)
Cl (Update): Failure to patch resulted in an embarrassing government leak Last week, DataBreaches noted that Guacamaya Group hacktivists had leaked emails from El Estado Mayor Conjunto De Chile (EMCO), the advisory body of the Chilean Ministry of Defense, the Joint Chiefs of Staff, and other governments. Now BiobioChile reports the government is considering the…
Microsoft confirms new Exchange zero-days are used in attacks
Sergiu Gatlan reports: Microsoft has confirmed that two recently reported zero-day vulnerabilities in Microsoft Exchange Server 2013, 2016, and 2019 are being exploited in the wild. “The first vulnerability, identified as CVE-2022-41040, is a Server-Side Request Forgery (SSRF) vulnerability, while the second, identified as CVE-2022-41082, allows remote code execution (RCE) when PowerShell is accessible to…
SCOOP: Australian national known as “DR32” to stand trial in U.S. on hacking charges
Australia has ordered an Australian national, David Kee Crees, extradited to the U.S., where he faces 22 counts involving hacking, fraud, and aggravated identity theft. Two of Crees’ better-known aliases were “Abdilo” and “DR32.” “Abdilo” DataBreaches started reporting on Crees in 2015 when he was known to this site as “Abdilo.” At the time, he…