Ransomware: A Perfect Storm James Sullivan and James Muir Emerging Insights, 29 March 2021 This Emerging Insights paper calls for a new set of policy interventions to reduce the threat from ransomware. Options range from introducing legislation to prevent ransom payments, to tackling the use of penetration testing tools used in ransomware attacks, to national-level mechanisms…
Category: Commentaries and Analyses
Whistleblower: Ubiquiti Breach “Catastrophic”
Brian Krebs reports: On Jan. 11, Ubiquiti Inc. [NYSE:UI] — a major vendor of cloud-enabled Internet of Things (IoT) devices such as routers, network video recorders and security cameras — disclosed that a breach involving a third-party cloud provider had exposed customer account credentials. Now a source who participated in the response to that breach alleges Ubiquiti…
UPDATE: Seller of alleged MobiKwik data deletes all the data and says “Adios!”
The following post by the original poster/seller appeared on the forum where the MobiKwik data — or what was purported to be MobiKwik data — was offered for sale: Major Update: =========== So, we have received probably 100-150 mails/messages last 24 hours regarding this leak. People praising us for hacking???, people wanting to learn hacking,…
Mobikwik offers master class in how NOT to respond to a breach; researchers scoff, consumers rage
Things have rapidly escalated in the wake of Mobikwik’s repeated denials that the digital wallet and payments network firm had a massive breach. As DataBreaches.net reported on Sunday, more than 8 TB of data from the firm had been listed for sale on a popular forum, data that allegedly included KYC (Know Your Customer) data…
More details emerged about FatFace ransomware attack
An attack on FatFace was already attracting media attention for the firm’s attempt to get people to keep their breach notification email confidential. Naturally, it got more attention that way. But on March 27, SuspectFile reported that the breach, first disclosed at the end of March, was more serious than what had been revealed previously….
Broward County Public Schools Cyberattack was Ransomware Attack — New Details Emerge
Earlier this month, Broward County Schools disclosed a cyberattack that sounded pretty serious. But there did not seem to be any follow-up in the media or on their web site to explain exactly what had happened and with what impact. Now threat actors have leaked what appear to be ransom negotiations with the district. A…