Reuters reports: WASHINGTON: The U.S. Department of Energy got ransom requests from the Russia-linked extortion group Cl0p at both its nuclear waste facility and scientific education facility that were recently hit in a global hacking campaign, a spokesperson said on Friday. The DOE contractor Oak Ridge Associated Universities and the Waste Isolation Pilot Plant, the…
Category: Hack
Oregon DMV, Louisiana OMV warn residents of MOVEit data breach
Both the Oregon and Louisiana departments of motor vehicles have become victims of the MOVEit hack and millions of drivers and vehicle owners have had their personal information stolen. Onur Demirkol reports that the Oregon DMV fell prey to the MOVEit hack: An estimated 3.5 million driver’s license and identity card details were exposed when…
Energy Department and other federal agencies affected by MOVEit breach
AP reports: The Department of Energy and several other federal agencies were compromised in a Russian cyber-extortion gang’s global hack of a file-transfer program popular with corporations and governments, but the impact was not expected to be great, Homeland Security officials said Thursday. But for others among what could be hundreds of victims from industry…
Google claims it caught China government hackers redhanded breaking into hundreds of networks around the world
Frank Bajak and AP report: Suspected state-backed Chinese hackers used a security hole in a popular email security appliance to break into the networks of hundreds of public and private sector organizations globally, nearly a third of them government agencies including foreign ministries, the cybersecurity firm Mandiant said Thursday. “This is the broadest cyber espionage…
State governments among victims of MoveIT Transfer breach
Alexander Culafi reports: Illinois, Minnesota and Missouri state governments are among a growing list of organizations attacked via a critical flaw in Progress Software’s MoveIT Transfer product. Progress Software on May 31 detailed an SQL injection bug in its managed file transfer (MFT) software MoveIt Transfer. Progress urged customers to immediately apply mitigations for the…
Maimondes Medical Center notifies 33,000 patients of hacking incident
On April 4, 2023, Maimonides Medical Center (“MMC”) discovered unauthorized access to patient information on one of its servers. Investigation revealed that the hacker had access to the server from March 18, 2023 to April 4, 2023. Information that might have been accessed included names and addresses and limited clinical information, including diagnosis and treatment…