Lawrence Abrams reports: Cryptocurrency rewards platform Celsius Network has disclosed a security breach exposing customer information that led to a phishing attack. Today, Celsius CEO Alex Mashinsky stated that Celsius’ third-party marketing server was compromised, and threat actors gained access to a partial Celsius customer list. Read more on BleepingComputer.
Category: Business Sector
IT: Asti DOCG consortium targeted by hackers
The Consortium for the Promotion of Asti has a mission: to promote the value of Asti DOCG and Moscato d’Asti wines — in Italy and in the world. Elisabetta Testa reports that they have suffered an attack (translation): The attack, which affected the servers of an external company, resulted in the temporary suspension of the…
Presidio Employee Files Class Action Over Data Breach
Kathryn M. Rattigan of Robinson + Cole writes: North American IT company Presidio faces a proposed data breach class action by an employee for an incident involving employee data. Eric LaPrairie, a former Presidio employee, received a notice of a data breach from Presidio, and about a month later found out that he was the…
Gay dating site Manhunt hacked, thousands of accounts stolen
Zack Whittaker reports: Manhunt, a gay dating app that claims to have 6 million male members, has confirmed it was hit by a data breach in February after a hacker gained access to the company’s accounts database. In a notice filed with the Washington attorney general’s office, Manhunt said the hacker “gained access to a database that…
Detecting Clop Ransomware
Splunk Threat Research Team reports: As ransomware campaigns continue, malicious actors introduce different modus operandi to target their victims. In this blog, we’ll be taking a look at the Clop ransomware. This crimeware was discovered in 2019 and is said to be used for an attack that demanded one of the highest ransom amounts in recorded history…
Houston Rockets Hit by “Babuk” Ransomware
Bill Toulas reports: The ransomware group known as “Babuk” has added Houston Rockets to its victim list, warning about the imminent leak of 500GB of stolen data if their payment demands aren’t met. The threat actors present screenshots of the exfiltrated files as proof of possession, showing what appears to be contracts, non-disclosure agreements, customer…