Catalin Cimpanu reports: A ransomware incident at Cloudstar, a cloud hosting service and managed service provider for several industry sectors, has disrupted the activities of hundreds of companies. Cloudstar, which operates several data centers across the US, is primarily known in the mortgage, title insurance, real estate, legal, finance, and local government sector, where it…
Category: Malware
Kelihos botmaster Peter Levashov to be sentenced today (updated)
It’s been a long time coming — too long, some might say — but the Russian hacker involved in the Kelihos botnet will find out his sentence today. Peter Levashov pleaded guilty in September, 2018. Another Russian national, Oleg Koshkin, 41, formerly of Estonia, operated the websites “Crypt4U.com,” “fud.bz” and others. According to court records…
Geneva, Ohio discloses ransomware attack
Warren Dillaway reports that that the city is investigating a breach. In a statement the city issued, they wrote: “Early Friday morning, July 16, 2021, the City of Geneva discovered an online breach into the city’s website and online data systems. The City of Geneva’s executive management and information technology department immediately began accessing the…
Ransomware attacks target Virginia Tech, no data believed stolen
Amy Friedenberger reports Virginia Tech was the target of two cyberattacks recently. The most recent attack was part of the Kaseya incident. An earlier attack in May reportedly involved an attempt to encrypt the university’s server. In neither case was there any evidence of data exfiltration. Read more on The Roanoke Times.
Ransomware attack at Comparis resulted in data breach
SwissInfo.ch reports: Last Wednesday Comparis.ch, which has 80 million visits a year, was shut down by ransomware attackers demanding $400,000 (CHF370,000) in cryptocurrencies to put it back online. By Friday the website was operational again. A Comparis spokesman told SWI swissinfo.ch that no ransom had been paid. The company initially said it believed that no customer…
TX: Thousands of employees and dependents of Whitehouse ISD just had their data dumped on the dark web
School districts continue to be low-hanging fruit for threat actors. While Grief threat actors hacked and then dumped data from Clover Park School District in Washington, Booneville School District in Mississippi, and Lancaster ISD in Texas, Vice Society hacked and then dumped data from Whitehouse ISD, also in Texas. On June 28, DataBreaches.net emailed Whitehouse…