There’s an update to the Jason’s Deli breach noted previously on this site. As of January 11, the firm posted on its site: On December 22, 2017, Jason’s Deli was notified by payment processors that credit card security personnel had informed it that a large quantity of payment card information had appeared for sale…
Category: Malware
NC: Emotet malware compromised Rockingham County Schools servers after employees opened phishing emails
This report was published December 28, 2017, but I’m first seeing it today. Joe Dexter reports on the devastation Rockingham County Schools experienced after employees fell for a phishing email. The only good news, perhaps, was that personal information did not appear to have been acquired or exfiltrated: All it took was several downloads of…
Hancock Health pays $55,000 ransom after SamSam locked up 1400 files; no patient data stolen
Samm Quinn has an update on the Hancock Health ransomware incident first reported the other day. The hospital ultimately paid a $55,000 (4 BTC) ransom to regain access to its systems, because although it could restore from backup, it would have taken more time. The hackers targeted more than 1,400 files, the names of every…
Hospital hit by ransomware: Attackers demand Bitcoin to release control of system
The Greenfield Reporter notes: Hancock Health fell victim to a cyber attack Thursday, with a hacker demanding Bitcoin to relinquish control of part of the hospital’s computer system. Employees knew something was wrong Thursday night, when the network began running more slowly than normal, senior vice president/chief strategy and innovation officer Rob Matt said. A…
North Royalton hacker stole potentially embarrassing information from computers, feds say
Eric Heisig reports: Federal prosecutors accused a North Royalton man of creating a malware program named “Fruitfly” that he used to worm its way into thousands of computers nationwide, according to a news release. Phillip Durachinsky, 28, used the malware to steal people’s personal information, including usernames, passwords, financial records, medical records, photographs, internet searches…
Online Shop Can’t Determine Card Breach Onset Due To “Lack of Backups”
I tweeted about this breach disclosure earlier today after Zack Whittaker called everyone’s attention to it, and I am glad to see that Catalin has written the matter up: In a data breach notification letter submitted to the Office of the Attorney General for the state of California, a makeup product vendor said it could…