Catalin Cimpanu reports: A mysterious hacker group has targeted, and most likely infected, Croatian government employees between February and April this year. Attackers, which are suspected to be a state-sponsored unit, have targeted victims using a spear-phishing campaign that mimicked delivery notifications from the Croatian postal or other retail services. Read more on ZDNet.
Category: Government Sector
Hackers Obtain Names, Social Security Numbers For 78K In Maryland
Deb Belt reports: The names and Social Security numbers of 78,000 Marylanders were accessed by hackers who breached Maryland Department of Labor databases, state officials said July 5. While customers whose personal information was accessed are just now being notified, the breach happened in April and involved data files from 2009, 2010, 2013 and 2014….
Telangana website leaking sensitive data of pensioners; official says it won’t be fixed until July 31
Soumyarendra Barik reports something that is somewhat… “mind-boggling:” Sensitive information, including bank account numbers, PAN numbers, PPO (pension payment order) IDs, tax-deductions and pension amounts of retired state government employees is being leaked on the Directorate of Treasuries and Accounts (DoTA) website, according to a New Indian Express report. Director of Treasuries and Accounts KSRC…
FL: Sheriff: DCF employee behind data breach affecting 2,000
AP reports: Investigators say a Florida Department of Children and Family Services employee is accused of leaking personal data to six people in an organized fraud ring. The Sarasota Herald-Tribune reports that the data breach affected 2,000 people, and has already amounted to $260,000 in retail theft. Read more on SFGate.
Eight people are arrested in Hong Kong over cyberattacks against police as the city copes with the aftermath of anti-government protests
AFP and Tracy You report: Hong Kong police said today they had arrested eight people for stealing and disclosing personal information of officers online as the city grapples with the aftermath of unprecedented anti-government protests that saw its parliament ransacked. […] Six men and two women, aged 16-40, were arrested last night for allegedly ‘doxxing’…
US Cyber Command issues alert about hackers exploiting Outlook vulnerability
Catalin Cimpanu reports: US Cyber Command has issued an alert via Twitter today about threat actors abusing an Outlook vulnerability to plant malware on government networks. The vulnerability is CVE-2017-11774, a security bug that Microsoft patched in Outlook in the October 2017 Patch Tuesday. Read more on ZDNet.