Andy Greenberg reports: When ransomware hackers hit Colonial Pipeline last month and shut off the distribution of gas along much of the East Coast of the United States, the world woke up to the danger of digital disruption of the petrochemical pipeline industry. Now it appears another pipeline-focused business was also hit by a ransomware crew around the same time,…
Category: Malware
UK: Tunbridge Wells: Skinners’ Kent schools closed after data breach
BBC reports: Two schools in Kent have been closed after hackers stole data with encrypted information about pupils. The Skinners’ Kent Academy and Skinners’ Kent Primary School said their servers were broken into but they do not believe the hackers have access to student and staff personal records. But the two Tunbridge Wells schools admitted…
Proposed Settlement in Nebraska Medicine Data Breach Lawsuit
Marianne Kolbasuk McGee reports: A federal court has approved a proposed settlement in a class action lawsuit filed in February against Nebraska Medicine in the wake of a 2020 malware attack and exfiltration of sensitive personal data and medical records of tens of thousands of individuals. Read more on GovInfoSecurity.
Tech vendor that provides constituent newsletter services to dozens of House members hit by ransomware
John Bresnahan, Anna Palmer, and Jake Sherman report that iConstituent, a vendor providing an e-newsletter system used by many members of Congress for constituent outreach, was the victim of a ransomware attack. The attack has reportedly impacted approximately 60 members of the House from both parties, who have been unable to retrieve constituent information for…
From QBot…with REvil Ransomware: Initial Attack Exposure of JBS
Vitali Kremez & Yelisey Boguslavskiy write: During the first week of June 2021, two major corporations were attacked by a ransomware group. JBS, the largest meat producer in the world, was hit on May 30, with the attack targeting the North American and Australian IT systems. Fujifilm, a Japanese multinational conglomerate was likely hit between…
Exchange Servers Targeted by ‘Epsilon Red’ Malware
Elizabeth Montalbano reports: REvil threat actors may be behind a set of PowerShell scripts developed for encryption and weaponized to exploit vulnerabilities in corporate networks, the ransom note suggests. Threat actors have deployed new ransomware on the back of a set of PowerShell scripts developed for making encryption, exploiting flaws in unpatched Exchange Servers to…