Brad Devereaux reports: WMed has alerted employees, former employees and their beneficiaries covered under employee healthcare coverage about a data security incident caused by phishing that exposed personal information. Someone within the Western Michigan University Homer Stryker MD School of Medicine, or WMed, clicked on a “phishing” link in an email, which allowed outside access…
Category: Phishing
Kenyan arrested in Qatar first targeted by phishing attack
Jon Gambrell reports: A Kenyan security guard now facing charges in Qatar after writing compelling, anonymous accounts of being a low-paid worker there found himself targeted by a phishing attack that could have revealed his location just before his arrest, analysts say. While analysts from Amnesty International and Citizen Lab said they were unable to…
Justice Department Announces Court-Authorized Seizure of Domain Names Used in Furtherance of Spear-Phishing Campaign Posing as U.S. Agency for International Development
WASHINGTON – On May 28, pursuant to court orders issued in the Eastern District of Virginia, the United States seized two command-and-control (C2) and malware distribution domains used in recent spear-phishing activity that mimicked email communications from the U.S. Agency for International Development (USAID). This malicious activity was the subject of a May 27 Microsoft…
Russian SolarWinds hackers launch email attack on government agencies
Nobelium launched the attacks after getting access to an email marketing service used by the United States Agency for International Development, or USAID, according to Microsoft. Guardian staff and agencies report: The state-backed Russian cyber spies behind the SolarWinds hacking campaign launched a targeted phishing assault on US and foreign government agencies and thinktanks this…
Philly data breach that impacted health employee emails also hit other departments
Emily Scott reports: The City of Philadelphia has released an update on an investigation into a data breach that left some employee email accounts accessible to unauthorized individuals. The incident, initially identified in March 2020, was the result of an employee’s email account that was exposed due to a phishing attack. The breach impacted people receiving services…
Some incidents reported in France this week
Some incidents that were reported in France this week: The University of Franche-Comté reported what L’Est Républicain described as a major attack n May 14. Some users received emails with malicious attachments. There does not seem to be any follow-up or notice on the university’s page, so it’s not clear how major this really was…