Lawrence Abrams reports: The Clop ransomware gang has confirmed to BleepingComputer that they are behind the recent Cleo data-theft attacks, utilizing zero-day exploits to breach corporate networks and steal data. Cleo is the developer of the managed file transfer platforms Cleo Harmony, VLTrader, and LexiCom, which companies use to securely exchange files between their business partners…
Category: Hack
Boston University and Feds Investigating Hacking of Framingham Heart Study Data
Molly Callahan reports: Boston University’s renowned Framingham Heart Study (FHS) was breached by hackers, who gained access to the data of participants—both living and deceased—of the country’s longest running, multigenerational heart study. BU officials say the hackers gained access to the study’s server, but that information technology specialists from BU and FHS were able to…
Rhode Island Residents’ Data Breached in Large Cyberattack; Data May Be Leaked Soon
Aimee Ortiz reports: The personal and private information of possibly hundreds of thousands of people who applied for government assistance in Rhode Island could be in the hands of hackers after a huge cyberattack, state officials said on Friday. The cybercriminals said to be behind the attack threatened to release the data unless they received…
Hackers take a bite out of Krispy Kreme
Jonathan Wheatley reports: Krispy Kreme said a cyber security attack has disrupted its online operations in the part of the US, as the doughnut maker warned it would have a material impact on its business. The US company said on Wednesday that it had been notified on November 29 of “unauthorised activity” in part of…
Hackers are exploiting a flaw in popular file-transfer tools to launch mass hacks, again
Carly Page reports: Security researchers are warning that hackers are actively exploiting another high-risk vulnerability in a popular file transfer technology to launch mass hacks. The vulnerability, tracked as CVE-2024-50623, affects software developed by Illinois-based enterprise software company Cleo, according to researchers at cybersecurity company Huntress. The flaw was first disclosed by Cleo in a security…
Cyberwar: Hackers tried to attack UA defense enterprises; UA hits Gazprombank with DDoS
State Special Communications / Yelyzaveta Kovtun reports: Hacker group UAC-0185 attempted to attack Ukrainian defense enterprises, as well as the Security and Defense Forces. Hackers used phishing emails for this. As reported in the State Intelligence Service, the hackers disguised their letters as official messages on behalf of the Ukrainian Union of Industrialists and Entrepreneurs….