ES: Secondary education center hit by Stormous After several months out of the public eye, the pro-Russian Stormous Ransomware group reappeared in February. Now they have claimed an attack on a secondary education center, the Instituto De Educación Secundaria Ies Emilio Canalejo Olmeda (IESCO) in Cordoba, Spain. On March 30, Stormous listed the entity in…
Category: Hack
Guam Memorial Hospital under review for potential HIPAA breach
Matsuki Hirayama reports: The unauthorized access into Guam Memorial Hospital’s network is undergoing a detailed review for a possible Health Insurance Portability and Accountability Act or HIPAA breach. The information came to light during the public hospital’s monthly board meeting Wednesday. GMH legal counsel Jeremiah Luther maintains that no patient or employee records were compromised, saying they got lucky….
Man Who Ran Twitter, Reddit And Telegram Accounts Selling Intimate Photos Hacked from Female Victims’ Accounts Charged with Possession, Distribution and Sale of Child Pornography; Cyberstalking; and Conspiracy to Hack Computers
SAN JUAN, Puerto Rico – On March 29, 2023, a grand jury charged Brian Luis Valentín-Ramos with five counts related to the possession, distribution and sale of child pornography; conspiring to illegally obtain information from protected computers; and cyberstalking, all in violation of 18 U.S.C. §§ 1030(a)(2), 2252(a)(4)(B), 2252A(a)(2), 2252A(a)(4)(B), and 2261A(2)(B), announced W. Stephen…
Hackers compromise 3CX desktop app in a supply chain attack
Sergiu Gatlan reports: A digitally signed and trojanized version of the 3CX Voice Over Internet Protocol (VOIP) desktop client is reportedly being used to target the company’s customers in an ongoing supply chain attack. 3CX is a VoIP IPBX software development company whose 3CX Phone System is used by more than 600,000 companies worldwide and…
Dutch railway NS warns 780,000 customers about data breach
NL Times reports: The Dutch national railway, NS, has warned about 780,000 customers that their personal data may be involved in a data breach.The train operator works closely with market research firm Blauw. External parties gained access to personal data at via a software supplier for that company. For example, e-mail addresses, telephone numbers or…
Cyberattack on debt-buying giant exposes sensitive info on nearly 500,000 people
Jonathan Greig reports: Nearly half a million people had their sensitive financial information leaked during a cyberattack on NCB Management Services – a company that purchases debt. The Pennsylvania-based company sent out breach notification letters last week after discovering the attack on February 4. In documents filed with Maine’s Attorney General, the company said 494,969 people had…