Marcia Greenwood reports a follow-up to a data leak initially reported in June 2021: Wegmans Food Markets has been hit with a $400,000 penalty for exposing the personal information of more than 3 million customers chainwide, including more than 830,000 New Yorkers, the New York State Attorney General’s Office announced Thursday. In a statement, the…
Category: Commentaries and Analyses
Ransomware LockBit: a hundred victims per month in the first half
Valéry Rieß-Marchive reports: In the first half of the year, more than 420 victims were claimed on the showcase site of the LockBit 2.0 franchise. This figure is lower than the reality. But to what extent? The examination of clues present in the source code of the showcase site sheds new light… on the level of…
Deepfakes and Stolen PII Utilized to Apply for Remote Work Positions — FBI
An FBI Public Service Announcement June 28, 2022 Alert Number I-062822-PSA The FBI Internet Crime Complaint Center (IC3) warns of an increase in complaints reporting the use of deepfakes and stolen Personally Identifiable Information (PII) to apply for a variety of remote work and work-at-home positions. Deepfakes include a video, an image, or recording convincingly…
“You really don’t understand the situation…. Google about our team,” Hive tells victim
SuperAlloy Industrial Company Ltd. (SAI) is an international company specializing in engineering and manufacturing lightweight metal products predominantly for the automotive industry. You may not recognize their name but might be driving around on their wheels, as SAI has produced lightweight forged aluminum wheels for McLaren, Ferrari, AMG, BMW, Jaguar, Daimler, and other manufacturers. SAI…
Cyberattacks: Karakurt makes a comeback with a bang
The following is a machine translation of an article by Valéry Rieß-Marchive: “A lot of May leaks are coming”. This is the message displayed in large print on the front page of Karakurt’s new showcase site. And he is not alone. It is accompanied by the announcement of future disclosures of data concerning 10 hitherto unknown victims. All are scheduled for…
Son of Conti: Ransomware tries its hand at politics
Dina Temple-Raston and Sean Powers report: It has been a busy spring for the Russian-speaking ransomware group Conti. After an unprecedented leak of its internal chat logs earlier in the year that had experts predicting the group’s demise, Conti, or at least some subset of it, came back with a vengeance. In April it attacked Costa Rica, hacking…