Sean Lyngaas reports: Hackers stole data belonging to multiple electric utilities in an October ransomware attack on a US government contractor that handles critical infrastructure projects across the country, according to a memo describing the hack obtained by CNN. […] The ransomware attack hit Chicago-based Sargent & Lundy, an engineering firm that has designed more…
Category: Business Sector
Vendor Claims to Have Scraped 400M Twitter User Records (with UPDATE 1)
Perhaps the top story this past week involves a sales offering on a popular hacking-related forum. The seller, who first joined the forum in December, has listed information on 400 million Twitter users for sale. No price is specified in the listing. The data, that were allegedly scraped due to a vulnerability, include email, name,…
Claimant to Maintain Anonymity in English High Court Cyber Attack Case
Hunton Andrews Kurth writes: On December 20, 2022, the English High Court has granted the victim of a cyber attack a permanent injunction against cyber attackers whilst the victim organization maintains its anonymity. Generally, a claimant’s identity is public in English court proceedings. Injunctions can be made against unknown and unidentifiable defendants enabling them to…
Update to LastPass incident: Customers should read it
From an update from LastPass: Based on our investigation to date, we have learned that an unknown threat actor accessed a cloud-based storage environment leveraging information obtained from the incident we previously disclosed in August of 2022. While no customer data was accessed during the August 2022 incident, some source code and technical information were…
Sports betting operator BetMGM hit by data breach
Aishwarya Nair reports: Sports betting service BetMGM said on Wednesday personal information of its customers were obtained in an unauthorized manner, but did not specify the number of users affected. The issue affected customer information such as name, contact information, date of birth, hashed Social Security number, account identifiers and information related to transactions with…
Guardian newspaper hit by suspected ransomware attack, staff told not to come to office
Alexander Martin reports: Staff at The Guardian newspaper have been told not to come into the office and to work from home for the rest of the week due to a suspected ransomware attack which struck late on Tuesday. The attack has impacted a number of business services at the 200-year-old news organization, but not…