Notices of breaches involving two school breaches showed up today in DataBreaches’ searches: Aspire Public Schools in California submitted notifications to at least two state attorneys general. According to its notification, Aspire learned that an unauthorized party gained access to one Aspire email account at various times between February 2022 and August 2022. There was…
Category: Malware
7×7 Dental Implant & Oral Surgery alleged victim of Abyss ransomware group
A leak site called “Abyss” recently added 7×7 Dental Implant & Oral Surgery Specialists of San Francisco (7×7) to their site and claimed to have 114 GB of the dental practice’s files. A file tree showing 2,891 directories and 63,557 files was posted as proof of claim. Some of the filenames suggest business-related internal documents,…
Microsoft leads effort to disrupt illicit use of Cobalt Strike, a dangerous hacking tool in the wrong hands
Elias Groll and AJ Vicens report: Microsoft’s Digital Crimes Unit, cybersecurity firm Fortra and the Health Information Sharing & Analysis Center announced legal action Thursday to seize domains related to criminal activity involving cracked copies of the security testing application Cobalt Strike, which has become a favorite tool for cybercriminals to carry out attacks around…
Ransomware Attack at NJ County Police Department Locks Up Criminal Investigative Files
Jonathan Dienst reports: The Camden County Police Department experienced a ransomware attack that has been locking many criminal investigative files and day-to-day internal administration abilities, several law enforcement officials said. Investigators said the attack started in the middle of March and technicians continue working to try to get all systems back up and running. Read more at NBC.
Oakland remains behind an 8-ball in responding to ransomware attack
Sarah Ravani reports: Oakland’s police union filed a claim against the city after a ransomware attack released personal information for thousands of current and former city employees, union officials said Monday. The legal filing, which asks for monetary damages of up to $25,000 per affected employee, argues that the city failed to implement “reasonable, industry-standard…
Money Message ransomware gang claims MSI breach, demands $4 million
Bill Toulas reports: Taiwanese PC parts maker MSI (Micro-Star International) has been listed on the extortion portal of a new ransomware gang known as “Money Message,” which claims to have stolen source code from the company’s network. MSI is a global hardware giant that makes motherboards, graphics cards, desktops, laptops, servers, industrial systems, PC peripherals,…