On December 1, Huntsville City Schools shut down classes for the day due to a ransomware threat. Now, after three weeks of investigating the situation, the district is warning parents about personal information being compromised in the attack. Megan Reyna of WAAY31 reports: School leaders say it is possible social security numbers and email addresses…
Category: Malware
Trucking giant Forward Air hit by new Hades ransomware gang
Lawrence Abrams reports: Trucking and freight logistics company Forward Air has suffered a ransomware attack by a new ransomware gang that has impacted the company’s business operations. […] Sources have told BleepingComputer today that Forward Air suffered a cyberattack by a new ransomware operation known as Hades. The Hades ransomware gang began attacking victims about…
Ransomware threat actors dump data from yet another k-12 district
The past few days have not been great ones for k-12 districts. As this site reported, DoppelPaymer ransomware threat actors recently dumped data from both Pascagoula-Gautier School District in Mississippi and Gardiner Public Schools in Montana. Now a third school district has also had some of their data dumped. On December 14, this site had…
Dozens of journalists’ iPhones hacked with NSO ‘zero-click’ spyware, says Citizen Lab
Zack Whittaker report: Citizen Lab researchers say they have found evidence that dozens of journalists had their iPhones silently compromised with spyware known to be used by nation states. For more than the past year, London-based reporter Rania Dridi and at least 36 journalists, producers and executives working for the Al Jazeera news agency were targeted…
DoppelPaymer dumps data from public school districts in Mississippi and Montana
Why ransomware threat actors go after small school districts with few resources still puzzles me. The districts may be “low-hanging fruit” from a security perspective, but they generally do not have the resources to pay big ransom demands. So why target them? My puzzlement notwithstanding, a number of ransomware teams do attack k-12 districts. DoppelPaymer…
GenRx Pharmacy Breach Notice Shows How to Do It Right
This may be one of the best breach notifications I have ever read — for its plain language, clarity, and lack of attempt to spin. Not only did these folks respond promptly to an attack, but they had usable backups, stopped the attack quickly, and just…. handled this so well, it seems. Maybe they didn’t…