KSTP reports: The Minnesota Department of Employment and Economic Development (DEED) says it’s notified job seekers that a recent security incident may have resulted in some personal information being compromised. A DEED spokesperson says the agency recently received information about suspicious communications from one or more persons claiming to be representatives of an approved company…
Category: Government Sector
Court certifies class action lawsuit against federal government over 2020 Canada Revenue Agency cyberattack
Mitchell Consky reports: The Federal Court of Canada has certified a class action lawsuit against the federal government, which alleges negligence in “safeguarding the confidential information of Canadians, leading to widespread privacy breaches.” The suit follows cyberattacks that targeted Canada Revenue Agency accounts and other government services back in 2020. Read more at CTV News.
Dallas delays release of report that reviews ransomware response
Everton Bailey Jr. reports that if you were hoping to get the promised release of the report on Dallas’s response to the ransomware attack by Royal, you’ll have to wait at least two more weeks. The last council meeting ran late and the council never got to review the report, which needs to happen before…
Defence Housing Australia Investigates Third-Party Data Breach
Daniel Croft reports: An investigation by Defence Housing Australia (DHA) is currently underway after it was notified that one of its third-party service providers had been hit by a cyber attack. The organisation, which provides housing and accommodation for military personnel and their families on and off base, has stressed that while there has been…
Ukraine’s CERT Thwarts APT28’s Cyberattack on Critical Energy Infrastructure
Seen on The Hacker News: The Computer Emergency Response Team of Ukraine (CERT-UA) on Tuesday said it thwarted a cyber attack against an unnamed critical energy infrastructure facility in the country. The intrusion, per the agency, started with a phishing email containing a link to a malicious ZIP archive that activates the infection chain. “Visiting…
In: 320,000 Patient Records From Ayush Jharkhand Gov Leaked on Hacking Forum
CloudSek reports: On 14 August, CloudSEK’s contextual AI digital risk platform XVigil discovered a threat actor Tanaka sharing a database marked as bitsphere[.]in on an english speaking hacking forum. Analysis of the database reveals that the following information has been leaked: More than 3 lakh 20 thousand patient records containing their PII information and medical diagnosis. 500 login…