Over the Labor Day weekend, the Los Angeles Unified School District (LAUSD) experienced a ransomware attack. Although their initial disclosure did not name the ransomware group involved, CISA issued an alert on September 6 about Vice Society attacking the education sector. Two days later, Vice Society acknowledged responsibility for the attack on LAUSD. LAUSD decided…
Category: Hack
VT: Randolph-area school district disables its own website following transphobic hack
Auditi Guha reports: The Orange Southwest Supervisory District’s website was hacked Saturday and inundated with “hate speech, symbols, and photographs targeting transgender invidividuals [sic],” superintendent Layne Millington wrote community members on Saturday. The incident prompted district leaders to disable its website and social media accounts, Millington wrote, and to refer the matter to local…
Thailand’s THE ICON GROUP hacked by DESORDEN
DESORDEN Group’s attacks on ASEAN businesses continue. This week, they disclosed a hack of The Icon Group in Thailand. In a statement on a popular hacking forum, DESORDEN writes: This data breach involved 161 GB of databases and files, including personal information of 264,128 customers, with their full name, ID card number, bank account…
Mexico confirms hack of military records, president’s health information
If you have been reading @Chum1ng0’s weekly “Bits n’ Pieces (Trozos y Piezas)” column on Fridays, you have already read about the Guacamaya group’s hack and leak of government files from Chile and other Latam countries. The incident has received public attention in Chile, where some have proposed a national cybersecurity agency. The Mexican government…
Bits ‘n Pieces (Trozos y Piezas)
Cl (Update): Failure to patch resulted in an embarrassing government leak Last week, DataBreaches noted that Guacamaya Group hacktivists had leaked emails from El Estado Mayor Conjunto De Chile (EMCO), the advisory body of the Chilean Ministry of Defense, the Joint Chiefs of Staff, and other governments. Now BiobioChile reports the government is considering the…
Microsoft confirms new Exchange zero-days are used in attacks
Sergiu Gatlan reports: Microsoft has confirmed that two recently reported zero-day vulnerabilities in Microsoft Exchange Server 2013, 2016, and 2019 are being exploited in the wild. “The first vulnerability, identified as CVE-2022-41040, is a Server-Side Request Forgery (SSRF) vulnerability, while the second, identified as CVE-2022-41082, allows remote code execution (RCE) when PowerShell is accessible to…