Remember, kids: tell the truth or someone will tell it for you. Kevin Beaumont picks up the story of how Oracle denies a breach when there has been so much confirmation of it, e..g.: Oracle told Bleeping Computer, and customers, “There has been no breach of Oracle Cloud. The published credentials are not for the Oracle Cloud….
Category: Commentaries and Analyses
Shoot the Messenger, Sunday Edition: Reporting on a leak is not unethical, Hamilton County
On March 26, DataBreaches linked to reporting by the Chattanooga Times Free Press. Their report indicated that the local government had not notified residents of a data breach potentially affecting 14,000 people despite having been notified of the incident 240 days ago. According to the memo, the firm sent a letter on Feb. 17 saying…
Canada’s Privacy Commissioner launches breach risk self-assessment tool for organizations
March 26, 2025 – Gatineau, Quebec Privacy Commissioner of Canada Philippe Dufresne has launched a new online tool that will help businesses and federal institutions that experience a privacy breach to assess whether the breach is likely to create a real risk of significant harm to individuals. The privacy breach risk self-assessment tool is a convenient web-based application…
How the FBI Tracked, and Froze, Millions Sent to Criminals in Massive Caesars Casino Hack
Joseph Cox of 404 Media in collaboration with Court Watch writes: The FBI managed to track down and freeze millions of dollars of cryptocurrency Caesars Entertainment sent to a group of hackers that held the casino’s computer systems ransom, according to a 404 Media and Court Watch review of a recently unsealed court document. According…
Blacklock Ransomware: A Late Holiday Gift with Intrusion into the Threat Actor’s Infrastructure
As seen on Resecurity’s blog, and where they are entitled to take a victory lap: Dubbed “BlackLock” (aka “El Dorado” or “Eldorado“), the ransomware-as-a-service (RaaS) outfit has existed since March 2024. In Q4 of last year, it increased its number of data leak posts by a staggering 1,425% quarter-on-quarter. According to independent reporting, a relatively new group has rapidly accelerated…
Shifting the sands of RansomHub’s EDRKillShifter
Jakub Souček and Jan Holman report: The RansomHub ransomware-as-a-service (RaaS) operation affiliates were linked to established gangs Medusa, BianLian, and Play, which share the use of RansomHub’s custom-developed EDRKillShifter. ESET researchers take a look back at the significant changes in the ransomware ecosystem in 2024 and focus on the newly emerged and currently dominating ransomware-as-a-service…