Nassim Khadem and Daniel Ziffer report: Medibank’s boss says the company will begin directly communicating with nearly half a million customers whose health data is believed to have been stolen, weeks after it first became aware hackers had breached its customer database. Medibank’s chief executive David Koczkar said the company had today started communicating with…
Category: Malware
Worok hackers hide new malware in PNGs, while ARCrypter ransomware expands reach from Latam to world
Two reports related to malware: Bill Toulas reports: A threat group tracked as ‘Worok’ hides malware within PNG images to infect victims’ machines with information-stealing malware without raising alarms. This has been confirmed by researchers at Avast, who built upon the findings of ESET, the first to spot and report on Worok’s activity in early…
MI: Ransomware attack responsible for shutdown affecting Jackson, Hillsdale schools
Martin Slagter reports: Jackson County Intermediate School District officials took network systems offline after technology staff determined suspicious activity to be the result of a “ransomware incident.” Public school districts in both counties canceled classes Monday, Nov. 14, with the system outage impacting a wide range of building operations including but not limited to heating,…
CO: Salud Family Health breached in September, leaked in November
On October 5, Salud Family Health in Colorado notified HHS of a breach, but only provided a “marker” of 501 affected. On November 4, they provided notice that said the types of information that might have been accessed or taken included in a cyberattack included: patients’ name, Social Security number, driver’s license number or Colorado…
Hong Kong regulator issues investigative report on 2021 Fotomax ransomware incident
The Office of the Privacy Commissioner for Personal Data (PCPD) in Hong Kong published an investigation report today concerning a ransomware attack on the database of Fotomax (F.E.) Limited. From the news release: The investigation arose from a data breach notification lodged by Fotomax with the PCPD on 1 November 2021, which reported that the…
UK: Data of Hereford school’s pupils posted on darkweb
Anna Zhadan reports: The Bishop of Hereford’s Bluecoat School in the Tupsley district of Hereford, England, suffered a data breach back in October, when threat actors attacked the institution’s systems. However, at the time, the school reassured that the personal information of students and staff was safe. Yet now, the school, which has around 1000…