It appears that Lewis & Clark in Oregon has been the victim of a ransomware attack by Vice Society. An urgent notice on the college’s website currently says: Urgent LC Alert: Campus phone service and PioNet Guest Wifi are working. If you are unable to reach Campus Safety at 503-768-7777, call the backup number at…
Category: Malware
Bits ‘n Pieces (Trozos y Piezas)
ES: Secondary education center hit by Stormous After several months out of the public eye, the pro-Russian Stormous Ransomware group reappeared in February. Now they have claimed an attack on a secondary education center, the Instituto De Educación Secundaria Ies Emilio Canalejo Olmeda (IESCO) in Cordoba, Spain. On March 30, Stormous listed the entity in…
Data stolen from Florida sheriff’s office leaked by LockBit ransomware group
Jonathan Greig reports: The LockBit ransomware group has leaked data it stole from Washington County Sheriff’s Office in northeastern Florida. The Record did not view the stolen data but cybersecurity experts said it included warrants and information on employees. Washington County has more than 25,000 residents and is about 45 minutes away from Panama City,…
Google reveals spyware attack on Android, iOS, and Chrome
Habiba Rashid reports: The primary target of this spyware campaign were the unsuspecting users in Italy, Malaysia, and Kazakhstan. Google’s Threat Analysis Group (TAG) has discovered two highly-targeted mobile spyware campaigns that use zero-day exploits to deploy surveillance software against iPhone and Android smartphone users. Google TAG discovered two “distinct, limited, and highly targeted” campaigns…
Ransomware crooks are exploiting IBM file exchange bug with a 9.8 severity
Dan Goodin reports: Threat actors are exploiting a critical vulnerability in an IBM file-exchange application in hacks that install ransomware on servers, security researchers have warned. The IBM Aspera Faspex is a centralized file-exchange application that large organizations use to transfer large files or large volumes of files at very high speeds. Rather than relying…
A listing about a government victim disappeared from LockBit’s site. But why? (UPDATE1)
Update of March 28: It seems LockBit re-listed WCSO last night on their leak site and has dumped data from them, although the files do not seem to be downloading at this time. When an entity has been the victim of a cyberattack, they’d be smart not to discuss the attack via their email system…