Commentaries and Analyses – Page 222

Airline Sues to Stop Popular Web-Scraping Service–American Airlines v. The Points Guy

Posted on March 1, 2022 by Dissent

Kieran McCarthy writes: Those interested in web scraping legal issues had high hopes that the Supreme Court’s opinion in Van Buren v. United States last summer would provide clear guidelines on which types of online data access were permissible and which were not. And while most would agree that the Supreme Court avoided a worst-case scenario with its…

ContiLeaks providing new insights and evidence against Conti

Posted on February 28, 2022 by Dissent

It almost felt like Christmas came early in a winter of despair. As noted yesterday, a Conti member who appears furious with Conti for its statement supporting Russia started dumping internal records from Conti with a statement ending, “Glory to Ukraine!” The leak was first reported on Twitter by VX-Underground: Conti ransomware group previously put…

Conti and Karma actors attack healthcare provider at same time through ProxyShell exploits

Posted on February 28, 2022 by Dissent

I’ve occasionally seen evidence that one victim was hit by more than one group or threat actor, but Sophos provides the most detailed reporting I’ve ever seen on one such incident. Sean Gallagher takes us through the saga that impacted a healthcare provider in Canada hit by two separate ransomware groups — Karma and Conti….

Conti ransomware gang chats leaked by pro-Ukrainian member

Posted on February 27, 2022 by Dissent

Catalin Cimpanu reports: A member of the Conti ransomware group, believed to be Ukrainian of origin, has leaked the gang’s internal chats after the group’s leaders posted an aggressive pro-Russian message on their official site, on Friday, in the aftermath of Russia’s invasion of Ukraine. The message appears to have rubbed Conti’s Ukrainian members the…

LAPSUS and the Terrible, Horrible, No Good, Very Bad Ransom Day¹ (UPDATED)

Posted on February 27, 2022September 16, 2024 by Dissent

First they thought their victim hacked them back. Then they appeared to be trolled by a “negotiator” who wasn’t. I don’t know if the Brazilian threat actors who call themselves LAPSUS felt like moving to Australia after a bad day at the ransom office yesterday, but their attack on Nvidia and the aftermath seemed somewhat……

Dallas IT worker erased police files by accident, didn’t have enough training, report says

Posted on February 25, 2022 by Dissent

Everton Bailey Jr. reports: A former Dallas IT worker fired after deleting millions of police files last year while trying to move them from online storage didn’t have enough training to do the job properly, according to an independent investigation of the incident. Despite his job primarily being focused on working with Commvault, the software…