A former member of RAIDForums was sentenced to prison today by an Amsterdam court. The 25-year-old man, Erkan Sezgin, was known as “DataBox” on RAIDforums when he listed the data of millions of Austrians for sale. Sezgin, who was employed as a data engineer at Matrixian Group, was arrested in November 2022 and detained until…
Category: Phishing
South Jersey Behavioral Health Resources discloses ransomware attack
South Jersey Behavioral Health Resources has disclosed that they were hit with a ransomware attack on April 3. They do not indicate what group attacked them, or what any ransom demand may have been, and DataBreaches has not seen this incident on any leak site to date. According to their notification, “The investigation remains ongoing,…
AG Platkin Co-Leads $2.5-Million Multistate Settlement with EyeMed Over 2020 Data Breach
NEWARK–Attorney General Matthew J. Platkin announced today that New Jersey is co-leading, with Oregon and Florida, an overall $2.5-million settlement with EyeMed Vision Care (“EyeMed”) that resolves an investigation into a data breach that compromised the personal and medical information of approximately 2.1 million people, including more than 52,000 from New Jersey. Pennsylvania also joined…
WA: Adna School District Defrauded $346,000 in Phishing Scam
The Chronicle reports: The Adna School District was defrauded of $346,000 through what school officials have called a “sophisticated phishing scam,” according to Adna Superintendent Thad Nelson. The district announced the fraud in a detailed email to The Chronicle on Thursday, noting that after the activity was confirmed, the district notified the FBI, the Washington…
Russian hackers exfiltrated data from from Capita over a week before outage
Kevin Beaumont writes: Capita have finally admitted a data breach, but still do not think they need to disclose key details of the incident to customers, regulators, impacted parties and investors. So in this piece we shall dig into the details using open source intelligence, and prove Capita was penetrated by Black Basta ransomware group using…
Daggerfly Cyberattack Campaign Hits African Telecom Services Providers
Ravie Lakshmanan reports: Telecommunication services providers in Africa are the target of a new campaign orchestrated by a China-linked threat actor at least since November 2022. The intrusions have been pinned on a hacking crew tracked by Symantec as Daggerfly, and which is also tracked by the broader cybersecurity community as Bronze Highland and Evasive Panda….