ES: Stormous claims attack on Zurcal The Zurcal group, which belongs to the energy saving and efficiency sector, has been named by Stormous Ransomware in its Telegram channel. The attack was posted on February 24 with images showing invoices and plans. Stormous gave the victim one week to respond. In a subsequent post, Stormous added…
Category: Business Sector
Hackers steal gun owners’ data from firearm auction website
Lorenzo Franceschi-Bicchierai reports: Hackers breached a website that allows people to buy and sell guns, exposing the identities of its users, TechCrunch has learned. The breach exposed reams of sensitive personal data for more than 550,000 users, including customers’ full names, home addresses, email addresses, plaintext passwords and telephone numbers. Also, the stolen data allegedly…
Cyber Plan Would Hold Software Makers Responsible in Hacks
Katrina Manson reports: The Biden administration is set to release an aggressive new national cybersecurity strategy on Thursday that seeks to shift the blame from companies that get hacked to software manufacturers and device makers, putting it on a potential collision course with big technology companies. The 35-page strategy, shared in advance with a group…
UK: WHSmith targeted by hackers in cyber attack as company data at risk
Natalie Rees reports: High street retailer WHSmith has reported it has been the target of a cyber attack with hackers accessing company data. The company said information regarding current and former employees had also been accessed by hackers during the security breach. Bosses of the established retailer said the situation does not impact its trading…
LastPass says employee’s home computer was hacked and corporate vault taken
Dan Goodin reports: Already smarting from a breach that put partially encrypted login data into a threat actor’s hands, LastPass on Monday said that the same attacker hacked an employee’s home computer and obtained a decrypted vault available to only a handful of company developers. Although an initial intrusion into LastPass ended on August 12,…
Social engineering attack on Boston labor union results in $6.4 million loss
AP reports: A cyberattack on a Boston-based labor union’s health fund resulted in the loss of $6.4 million, but it does not appear that the personal information of members was stolen or compromised, union officials said. Federal and local law enforcement agencies were notified of the attack at Pipefitters Local 537 that was discovered Feb….