First it was a Magecart attack on their web sites in Slovenia, Croatia, Serbia, Bosnia and Hercegovina and Montenegro, as reported in June. Now it appears to be a ransomware attack by Conti threat actors, who dumped more than two dozen files as alleged proof of access and exfiltration from the international sporting goods retailer….
Category: Malware
Statement by Gardiner Public Schools about Ransomware Attack
On November 26, DataBreaches.net reported that two more k-12 districts appeared to have been attacked by ransomware threat actors. One was Spring ISD in Houston, Texas, but DataBreaches.net did not name the other district at the time as they had not confirmed the breach. DataBreaches.net has now received a statement from the Gardiner Public Schools…
The painful calculus of ransomware payments
Dennis Fisher writes: The pandemic has disrupted, and in some cases destroyed, the business models of many companies, but it has been a boon for many ransomware gangs, which have taken the opportunity to hone their skills and expand their operations to include new forms of extortion, making an already serious threat into perhaps the…
Russian hacking group uses Dropbox to store malware-stolen data
Sergiu Gatlan reports: Russian-backed hacking group Turla has used a previously undocumented malware toolset to deploy backdoors and steal sensitive documents in targeted cyber-espionage campaigns directed at high-profile targets such as the Ministry of Foreign Affairs of European Union countries. The previously unknown malware framework, named Crutch by its authors, was used in campaigns spanning…
Brazil planemaker Embraer says hackers gained access to company data
Reuters reports: Brazilian plane manufacturer Embraer said late on Monday that it had been targeted by hackers, who obtained the “disclosure of data allegedly attributed to the company.” The company said the breach was identified on Nov. 25 and the culprits only got access to a single company archive. Read more on Reuters. h/t, @Chum1ng0
Huntsville City Schools hit by ransomware attack
WAAY31 reports: Huntsville City Schools is canceling classes on Tuesday due to a ransomware threat. The district announced earlier Monday that it was closing all schools and campuses for the remainder of the day “due to a potential cybersecurity threat.” It said “students, families, and faculty and staff members should shut down their district-issued devices and…