BBC reports: Two schools in Kent have been closed after hackers stole data with encrypted information about pupils. The Skinners’ Kent Academy and Skinners’ Kent Primary School said their servers were broken into but they do not believe the hackers have access to student and staff personal records. But the two Tunbridge Wells schools admitted…
Category: Malware
Proposed Settlement in Nebraska Medicine Data Breach Lawsuit
Marianne Kolbasuk McGee reports: A federal court has approved a proposed settlement in a class action lawsuit filed in February against Nebraska Medicine in the wake of a 2020 malware attack and exfiltration of sensitive personal data and medical records of tens of thousands of individuals. Read more on GovInfoSecurity.
Tech vendor that provides constituent newsletter services to dozens of House members hit by ransomware
John Bresnahan, Anna Palmer, and Jake Sherman report that iConstituent, a vendor providing an e-newsletter system used by many members of Congress for constituent outreach, was the victim of a ransomware attack. The attack has reportedly impacted approximately 60 members of the House from both parties, who have been unable to retrieve constituent information for…
From QBot…with REvil Ransomware: Initial Attack Exposure of JBS
Vitali Kremez & Yelisey Boguslavskiy write: During the first week of June 2021, two major corporations were attacked by a ransomware group. JBS, the largest meat producer in the world, was hit on May 30, with the attack targeting the North American and Australian IT systems. Fujifilm, a Japanese multinational conglomerate was likely hit between…
Exchange Servers Targeted by ‘Epsilon Red’ Malware
Elizabeth Montalbano reports: REvil threat actors may be behind a set of PowerShell scripts developed for encryption and weaponized to exploit vulnerabilities in corporate networks, the ransom note suggests. Threat actors have deployed new ransomware on the back of a set of PowerShell scripts developed for making encryption, exploiting flaws in unpatched Exchange Servers to…
Department of Justice Seizes $2.3 Million in Cryptocurrency Paid to the Ransomware Extortionists Darkside
WASHINGTON – The Department of Justice today announced that it has seized 63.7 bitcoins currently valued at approximately $2.3 million. These funds allegedly represent the proceeds of a May 8, ransom payment to individuals in a group known as DarkSide, which had targeted Colonial Pipeline, resulting in critical infrastructure being taken out of operation. The…