Bill Toulas reports: Analysts have found the source of a mass breach of over 500 e-commerce stores running the Magento 1 platform and involves a single domain loading a credit card skimmer on all of them. According to Sansec, the attack became evident late last month when their crawler discovered 374 infections on the same…
Category: Malware
CISA Alert (AA22-040A): 2021 Trends Show Increased Globalized Threat of Ransomware
Summary In 2021, cybersecurity authorities in the United States,[1][2][3] Australia,[4] and the United Kingdom[5] observed an increase in sophisticated, high-impact ransomware incidents against critical infrastructure organizations globally. The Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), and the National Security Agency (NSA) observed incidents involving ransomware against 14 of the 16 U.S….
UK: ‘Human error’ let criminals hack SEPA’s systems with £42m unaccounted for
David Bol reports: Scotland’s auditor general has revealed that a huge cyber attack on the Scottish Environmental Protection Agency (Sepa) was carried out after “human error” allowed criminals to access systems. Sepa suffered a huge ransomware attack on Christmas Eve in 2020 which led to around 1.2GB of data, amounting to at least 4,000 files,…
Ransomware dev releases Egregor, Maze master decryption keys
Lawrence Abrams reports: The master decryption keys for the Maze, Egregor, and Sekhmet ransomware operations were released last night on the BleepingComputer forums by the alleged malware developer. […] Fast forward 14 months later, and the decryption keys for these operations have now been leaked in the BleepingComputer forums by a user named ‘Topleak’ who claims to be…
East Bay Community College Data Breached In Ransomware Attack
Shawn Taylor reports: Ohlone College was hacked in late January and the private information of some current and former students, staff and faculty was compromised, including Social Security and bank account numbers, according to school officials. The community college said in a Feb. 4 notice on its website and letters sent to students it had…
Puma hit by data breach after Kronos ransomware attack
The Kronos ransomware incident can’t seem to stay out of the news cycle. Not only has it disrupted payroll operations for numerous clients, leaving many employees without their correct weekly paychecks, but employee data has also been stolen. Sergiu Gatlan reports: Sportswear manufacturer Puma was hit by a data breach following the ransomware attack that hit…