Here we go again? See recent developments here and past coverage linked from here.
Category: Malware
Credit unions can serve up negligence claim in Sonic data breach case – judge
Sara Merken reports: An Ohio federal judge ruled on Sonic Corp’s bid to dismiss claims brought by financial institutions over a 2017 data breach in which hackers accessed customers’ payment card data from 325 of its drive-in locations, allowing a negligence claim to proceed while nixing claims of negligence per se and for declaratory and…
Hakbit ransomware campaign targeting specific European countries
Derek Kortepeter reports: Proofpoint researchers have published findings on a campaign involving the Hakbit ransomware. As their blog post states, the ransomware is being spread via spear-phishing emails targeted at individuals in “mid-level positions across the pharmaceutical, legal, financial, business service, retail, and healthcare sector.” The attacks, described as low-volume, are specifically targeting employees of organizations located in…
BBC got to spectate ransomware negotiations with NetWalker
Oh, this is a bit different. Joe Tidy of BBC reports that BBC got an anonymous tipoff about NetWalker’s ransomware negotiations with the University of California San Francisco and was able to spectate the chat negotiations. BBC’s report includes snippets of the negotiations such as when the uni counter-offered $780,000 to the threat actors’ $3…
New Ransom X Ransomware used in Texas TxDOT cyberattack
Lawrence Abrams reports: A new ransomware called Ransom X is being actively used in human-operated and targeted attacks against government agencies and enterprises. May 2020 was not a good month for Texas as both the Texas Courts and the Texas Department of Transportation (TxDOT) were hit with ransomware attacks. At the time of the attacks, it was not known…
ZA: Hackers strike at Life Healthcare, extent of data breach yet to be assessed
I missed this one a few weeks ago, it seems. On June 9, CGTN Africa reported: South Africa’s Life Healthcare said on Tuesday its southern African operation was hit by a cyber attack affecting its admissions systems, business processing systems and email servers, but is yet to determine the extent to which data has been…