I tweeted about this breach disclosure earlier today after Zack Whittaker called everyone’s attention to it, and I am glad to see that Catalin has written the matter up: In a data breach notification letter submitted to the Office of the Attorney General for the state of California, a makeup product vendor said it could…
Category: Malware
Two Hong Kong travel agencies reveal hacks and ransom demands
Ernest Kao, Danny Lee, and Christy Leung report that two travel agencies have disclosed that they have been hacked and ransom demanded. It’s not totally clear from their statements whether these are both ransomware incidents and if they’re by the same threat actor(s). SCMP reports: Goldjoy, which has three branches, revealed on Thursday that unauthorised…
U. of Rochester Jones Memorial Hospital impacted by cyberattack
From the hospital’s site, today: Jones Memorial Hospital is experiencing unexpected computer downtime due to a cyberattack. A limited number of our information services have been affected. However, to the best of our knowledge no patient financial or medical information has been compromised. We have been in contact with law enforcement and the New York…
Hackers Used DC Police Surveillance System to Distribute Cerber Ransomware
Catalin Cimpanu reports: A Romanian man and woman are accused of hacking into the outdoor surveillance system deployed by Washington DC police, which they used to distribute ransomware. The two suspects are named Mihai Alexandru Isvanca and Eveline Cismaru, Romanian nationals, both arrested last week by Romanian authorities part of Operation Bakovia that culminated with…
Romania arrests five suspected members of major ransomware gang
A press release from Europol earlier today: During the last week, Romanian authorities have arrested three individuals who are suspected of infecting computer systems by spreading the CTB-Locker (Curve-Tor-Bitcoin Locker) malware – a form of file-encrypting ransomware. Two other suspects from the same criminal group were arrested in Bucharest in a parallel ransomware investigation linked…
Encryption protected Golden Optometric patients’ EHR from CrySiS attack
It’s nice to read a notification where an entity had good defenses in place. Consider this notification from Golden Optometric in California: Early on the morning of November 6, 2017, the network server at Golden Optometric was infected with a variant of the “CrySiS” ransomware virus, which encrypted a limited number of files on its…