DataBreaches probably sounds like a broken record after six years of calls for more transparency in breach notifications. Sadly, the situation has gotten worse in the past year. Not only do entities fail to admit they suffered a ransomware attack, but they fail to inform patients if the patient’s protected health information was leaked or…
Category: Malware
Attacked by Vice Society earlier this month, Lewis & Clark finds files with personal information have now been leaked
It appears that Lewis & Clark in Oregon has been the victim of a ransomware attack by Vice Society. An urgent notice on the college’s website currently says: Urgent LC Alert: Campus phone service and PioNet Guest Wifi are working. If you are unable to reach Campus Safety at 503-768-7777, call the backup number at…
Bits ‘n Pieces (Trozos y Piezas)
ES: Secondary education center hit by Stormous After several months out of the public eye, the pro-Russian Stormous Ransomware group reappeared in February. Now they have claimed an attack on a secondary education center, the Instituto De Educación Secundaria Ies Emilio Canalejo Olmeda (IESCO) in Cordoba, Spain. On March 30, Stormous listed the entity in…
Data stolen from Florida sheriff’s office leaked by LockBit ransomware group
Jonathan Greig reports: The LockBit ransomware group has leaked data it stole from Washington County Sheriff’s Office in northeastern Florida. The Record did not view the stolen data but cybersecurity experts said it included warrants and information on employees. Washington County has more than 25,000 residents and is about 45 minutes away from Panama City,…
Google reveals spyware attack on Android, iOS, and Chrome
Habiba Rashid reports: The primary target of this spyware campaign were the unsuspecting users in Italy, Malaysia, and Kazakhstan. Google’s Threat Analysis Group (TAG) has discovered two highly-targeted mobile spyware campaigns that use zero-day exploits to deploy surveillance software against iPhone and Android smartphone users. Google TAG discovered two “distinct, limited, and highly targeted” campaigns…
Ransomware crooks are exploiting IBM file exchange bug with a 9.8 severity
Dan Goodin reports: Threat actors are exploiting a critical vulnerability in an IBM file-exchange application in hacks that install ransomware on servers, security researchers have warned. The IBM Aspera Faspex is a centralized file-exchange application that large organizations use to transfer large files or large volumes of files at very high speeds. Rather than relying…