Rafia Shaikh reports: Cybercriminals are targeting Magento sites running Mirasvit Helpdesk – a popular helpdesk extension. The extension enables site owners to add a “Chat with us” widget on their Magento shops. Mirasvit was vulnerable to security flaws that affect every version of the extension up until version 1.5.2. Security firm WebShield had first published details about these security…
Category: Hack
Two Romanian Suspects Charged With Hacking of Metropolitan Police Department Surveillance Cameras in Connection with Ransomware Scheme
A criminal complaint and arrest warrants were unsealed today charging two Romanian nationals with a conspiracy to illegally access approximately 123 computers associated with Metropolitan Police Department (MPD) surveillance cameras and to use those computers in connection with a scheme to distribute ransomware in January 2017. U.S. Attorney Jessie K. Liu for the District of…
HHS announces $2.3 million settlement with 21st Century Oncology for violations of HIPAA
I’m not sure why HHS delayed a few weeks in announcing their settlement with 21st Century Oncology, as some of us reported the $2.3 million settlement earlier this month, but HHS has now issued a press release: Failure to protect the health records of millions of persons costs entity millions of dollars 21st Century Oncology,…
Notice of Data Incident Regarding Veyna & Forschino
(I should have remembered to anticipate press releases after 3 pm on the Friday of a big holiday weekend. Here’s another one:) On November 27, 2017, Veyna & Forschino (V&F) encountered suspicious activity on one company email account. V&F immediately began investigating the matter and contacted its local IT firm who disabled access. Further, V&F…
Amateur Hacker Behind Satori Botnet
Catalin Cimpanu reports: A so-called “script kiddie” is behind the recently discovered Satori botnet that has scared security researchers because of its rapid rise to a size of hundreds of thousands of compromised devices. Researchers say that a hacker named Nexus Zeta created Satori, which is a variant of the Mirai IoT malware that was…
Nissan Canada data breach may have exposed 1.1M finance customers’ information
Katie Dangerfield reports: Nissan Canada Finance says the personal information of approximately 1.13 million customers may have been exposed due to a data breach. In a media release sent Thursday, the company said the breach involved unauthorized person(s) gaining access to the personal information of some customers that have financed their vehicles through Nissan Canada…