And yet another breach disclosed at the beginning of a holiday weekend – this one posted by the State of Alaska: September 1, 2017 ANCHORAGE – The Alaska Department of Health and Social Services had a security breach that may have disclosed personal information of individuals who have interacted with the Office of Children’s Services….
Category: Malware
Mystery surrounds malware attack that forced German state parliament offline
Graham Cluley reports: According to media reports, a malware attack has managed to disrupt the operations of parliamentary business in the German federal state of Saxony-Anhalt. The problem at the Saxony-Anhalt Landtag appears to have started after a state parliament employee opened a malicious email attachment on Wednesday that proceeded to infect their PC. The…
Princess ransomware makes a visit to the wrong website a royal mistake
Danny Palmer reports: A newly uncovered cyber criminal campaign is using a well-known exploit kit to distribute ransomware using drive-by downloads on hacked websites. While not used as prolifically as it once was, the RIG Exploit kit leverages vulnerabilities in Internet Explorer and Flash Player to launch JavaScript, Flash, VBscript-based attacks to distribute malware to…
Medical Oncology Hematology Consultants notifies 19,203 patients after ransomware incident
Medical Oncology Hematology Consultants, PA in Delaware recently reported a ransomware attack to HHS that affected 19,203 patients. The attack began on June 17, but wasn’t discovered until July 7. The practice notes that there was no indication that any PHI was accessed, much less acquired. I was impressed by their robust response to the incident…
This giant ransomware campaign just sent millions of malware-spreading emails
Danny Palmer reports: Once considered almost dead, the Locky strain of ransomware has continued its resurgence with a new email distribution campaign, which researchers say is one of the largest malware campaigns of this half of the year. Over 23 million messages containing Locky were sent in just 24 hours on 28 August, with the…
SC: Dorchester School District 2 says $2,900 ransom paid to recover data after server breach, but no identities stolen
Drew Tripp reports: Dorchester School District 2 officials say no student or staff member’s identity information was stolen or compromised in a ransomware attack on the district’s computer network servers over the summer, but that some files were corrupted and lost, and the district was forced to pay a ransom to regain access to other…