Jagmeet Singh reports: Tata Power, a leading power generation company in India, has confirmed it was hit by a cyberattack. In a brief statement released on Friday, the Mumbai-based company said that the attack impacted some of its IT systems. “The company has taken steps to retrieve and restore the systems. All critical operational systems…
Category: Business Sector
Woolworths says 2.2m MyDeal customers’ data hacked
Ben Potter and Carrie LaFrenz report: In the third major corporate security breach in as many weeks, Woolworths is scrambling to contact 2.2 million customers of its MyDeal online marketplace arm whose data has been accessed by an unauthorised user using “compromised” credentials, the supermarkets giant said on Friday evening. […] Of the 2.2 million estimated to…
Authorities name North Korea hacker group, warn of attacks on Japanese crypto assets
The Yomiuri Shimbun reports: The North Korean hacker group Lazarus has conducted cyber-attacks targeting Japanese crypto asset companies, according to the National Police Agency. It is unusual to name a suspected attacker before taking such actions as an arrest, but in this case, authorities have adopted a method called “public attribution,” using it in Japan…
Bits ‘n Pieces (Trozos y Piezas)
Es-CT: Update on Consorci Sanitari Integral Attack by RansomExx Last week, DataBreaches reported an attack on the Consorci Sanitari Integral (CSI) system of hospitals and health centers in Catalonia. Since then, RansomExx claimed responsibility for the attack and claims to have 54 GB of files that include DNI and medical information of patients and employees….
US Airports in Cyberattack Crosshairs for Pro-Russian Group Killnet
Jai Vijayan reports: Hot on the heels of attacks against US state government websites, pro-Russian threat group Killnet on Monday disrupted the websites of multiple US airports in a series of distributed denial-of-service (DDoS) attacks. It also called on similarly aligned groups and individuals to carry out DDoS attacks on other US infrastructure targets, in…
PG&E was publicly exposing partial SSN information of US consumers through its use of Experian Identity Verification questions.
Somehow I missed this one but it’s so significant that even though I am late with linking to it, I hope to make more people aware of it. @Lucky225 writes: I recently discovered PG&E will let you sign up for electricity online without providing your SSN. Their website offered an option for “Alternate Identification”, so…