Ben Potter and Carrie LaFrenz report: In the third major corporate security breach in as many weeks, Woolworths is scrambling to contact 2.2 million customers of its MyDeal online marketplace arm whose data has been accessed by an unauthorised user using “compromised” credentials, the supermarkets giant said on Friday evening. […] Of the 2.2 million estimated to…
Category: Non-U.S.
Authorities name North Korea hacker group, warn of attacks on Japanese crypto assets
The Yomiuri Shimbun reports: The North Korean hacker group Lazarus has conducted cyber-attacks targeting Japanese crypto asset companies, according to the National Police Agency. It is unusual to name a suspected attacker before taking such actions as an arrest, but in this case, authorities have adopted a method called “public attribution,” using it in Japan…
Thumb drive with confidential Yukon gov’t case files found in Whitehorse pawn shop
CBC reports: The Yukon government, RCMP and the territory’s privacy commissioner are investigating how a thumb drive containing confidential case files belonging to the Health and Social Services department ended up at a Whitehorse pawn shop. City resident Brian Zink discovered the data after he bought the thumb drive at a pawn shop. Read more at CBC. h/t, @fanCRTCProfling
Police tricks DeadBolt ransomware out of 155 decryption keys
Sergiu Gatlan reports: The Dutch National Police, in collaboration with cybersecurity firm Responders.NU, tricked the DeadBolt ransomware gang into handing over 155 decryption keys by faking ransom payments. DeadBolt is a ransomware operation active since January and known for demanding 0.03 bitcoin ransoms after encrypting thousands of QNAP and Asustor Network Attached Storage (NAS) devices (20,000…
City ‘inadvertently’ shares personal information, breaches privacy in mass-email to hundreds of Hamilton voters
Matthew Van Dongen reports: The city says it “inadvertently” breached the privacy of 450 people by leaving names and personal email addresses visible in a mass email to Hamilton residents who registered to vote by mail in the looming election. Upset residents started posting online Thursday night about the screw-up, which the city acknowledged is a…
Bits ‘n Pieces (Trozos y Piezas)
Es-CT: Update on Consorci Sanitari Integral Attack by RansomExx Last week, DataBreaches reported an attack on the Consorci Sanitari Integral (CSI) system of hospitals and health centers in Catalonia. Since then, RansomExx claimed responsibility for the attack and claims to have 54 GB of files that include DNI and medical information of patients and employees….