This week, DataBreaches.net reported on a new dedicated leak site and threat actors who had hit Clover Park School District in Washington. The same threat actors, whose name is not even clear (are they PayOrGrief or Grief_List or…) have listed three other victims on their site who presumably did not pay their ransom demands. One…
Category: Non-U.S.
INM seeking exploratory talks over legal claims following data breach
Arthur Beesley reports: Independent News & Media [INM] has signalled its interest in exploratory talks over legal claims lodged following the data breach scandal that rocked the group when businessman Denis O’Brien was its main shareholder. The claims centre on the searching of emails in 2014 that belonged to lawyers, senior journalists, former INM executives…
De: Waschbär reports cyberattack
Waschbär is an environmentally friendly online retailer of clothes, household goods, and other products. On its web site, there is a notice about a malware incident (the following is a machine translation. “Waschbär” means “raccoon.”) A more detailed version follows from their May 26 statement (machine translation): On Wednesday afternoon, May 19th, 2021, our company…
Mexico Arrests Suspected Romanian Boss of ATM Skimming Network
Marcel Gascón Barberá reports: Mexican prosecutors have announced the arrest of a man identified in Romania as a key underworld figure, Florian Tudor, suspected of runnning an international skimming operation copying credit card data. The arrest follows an extradition request from Romania concerning charges of organised crime, extortion and aggravated attempted homicide. Minutes after the two…
Klarna battles data breach with reports of leaked user info
Isabel Woodford reports: Consumers have raised the alarm about a data breach — including users’ names — at Klarna, Europe’s largest private fintech. The company, which is reportedly in the throes of closing a deal valuing it at $40bn, came under fire on Thursday after users complained they were being accidentally logged in as other people, given…
Japanese government agencies suffer data breaches after Fujitsu hack
So it may not be just 76,000 email addresses… Ax Sharma reports: Offices of multiple Japanese agencies were breached via Fujitsu’s “ProjectWEB” information sharing tool. Fujitsu states that attackers gained unauthorized access to projects that used ProjectWEB, and stole some customer data. It is not yet clear if this breach occurred because of a vulnerability exploit, or a…