Updated March 15: This incident was reported to HHS on March 3 as affecting 35,068 health plan members, so it likely included former employees as well as current ones. DPS’s notice can be found on their website. Nate Lynn reports: Personal information belonging to some 15,000 Denver Public Schools (DPS) employees was stolen in what…
Category: Hack
Bits ‘n Pieces (Trozos y Piezas)
ES: Stormous claims attack on Zurcal The Zurcal group, which belongs to the energy saving and efficiency sector, has been named by Stormous Ransomware in its Telegram channel. The attack was posted on February 24 with images showing invoices and plans. Stormous gave the victim one week to respond. In a subsequent post, Stormous added…
Hackers steal gun owners’ data from firearm auction website
Lorenzo Franceschi-Bicchierai reports: Hackers breached a website that allows people to buy and sell guns, exposing the identities of its users, TechCrunch has learned. The breach exposed reams of sensitive personal data for more than 550,000 users, including customers’ full names, home addresses, email addresses, plaintext passwords and telephone numbers. Also, the stolen data allegedly…
UK: WHSmith targeted by hackers in cyber attack as company data at risk
Natalie Rees reports: High street retailer WHSmith has reported it has been the target of a cyber attack with hackers accessing company data. The company said information regarding current and former employees had also been accessed by hackers during the security breach. Bosses of the established retailer said the situation does not impact its trading…
Forget the spy balloon. China-linked hackers collect far more information, report finds.
Larry Mayer reports: Even as the Chinese spy balloon floated across the U.S., China-linked hackers were gathering far more information by breaking into computer networks in America and around the world, according to a new report by a leading cybersecurity firm. CrowdStrike says in its annual global threat report that it observed China-linked cyberespionage groups targeting 39 industries on…
LastPass says employee’s home computer was hacked and corporate vault taken
Dan Goodin reports: Already smarting from a breach that put partially encrypted login data into a threat actor’s hands, LastPass on Monday said that the same attacker hacked an employee’s home computer and obtained a decrypted vault available to only a handful of company developers. Although an initial intrusion into LastPass ended on August 12,…