Sergiu Gatlan reports: An NPM supply-chain attack dating back to December 2021 used dozens of malicious NPM modules containing obfuscated Javascript code to compromise hundreds of downstream desktop apps and websites. As researchers at supply chain security firm ReversingLabs discovered, the threat actors behind this campaign (known as IconBurst) used typosquatting to infect developers looking for very popular…
Category: Malware
Claire’s data breach $350K class action settlement
Top Class Actions reports that there is a settlement in litigation stemming from a data breach involving customer information in a 2020 breach that affected some customers of Claire’s accessories stores. For approximately two months in 2020, malware compromised payments made on the retailer’s website. The case is Julia Rossi, et al v. Claire’s Stores,…
Ca: College of the Desert victimized once again by ransomware; most online services currently down
Jonathan Horwitz reports: The College of the Desert has fallen victim to a second successful malware attack against its online network in as many years. Currently, most of the college’s online services are offline, its website is not available and at least some employees are lacking access to their email accounts, COD public information officer Nicholas Robles confirmed…
AstraLocker ransomware shuts down and releases decryptors
Sergiu Gatlan reports: The threat actor behind the lesser-known AstraLocker ransomware told BleepingComputer they’re shutting down the operation and plan to switch to cryptojacking. The ransomware’s developer submitted a ZIP archive with AstraLocker decryptors to the VirusTotal malware analysis platform. Read more at BleepingComputer.
Update on Plainedge School District ransomware attack
On June 15, DataBreaches reported that BlackCat threat actors had added Plainedge School District in New York to their dedicated leak site. At the time, BlackCat (aka ALPHV) only offered a few files as proof but warned more data would be leaked if they did not hear from the district. The threat actors subsequently dumped…
UK: Thousands of students have data leaked on dark web by Vice Society
Kevin O’Sullivan and Michael Powell report on attacks by the ransomware team known as Vice Society on U.K. schools. Student data was disclosed on Vice’s dedicated leak site after their victims refused to pay ransom demands. The Daily Mail report includes Vice’s attacks on five schools and a sixth-form college, including Pilton Community College, The…