Sergiu Gatlan reports: Russia says some of its federal agencies’ websites were compromised in a supply chain attack on Tuesday after unknown attackers hacked the stats widget used to track the number of visitors by multiple government agencies The list of sites impacted in the attack includes the websites of the Energy Ministry, the Federal…
Category: Non-U.S.
Belarus conducted widespread phishing campaigns against Ukraine, Poland, Google says
Joseph Menn reports: Belarus conducted widespread phishing attacks against members of the Polish military as well as Ukrainian officials, security researchers said Monday, providing more evidence that its role in Russia’s invasion of Ukraine has gone beyond serving as a staging area for Russian troops. Google’s threat-hunting team released details of the tricks deployed against…
Nespresso data leak in South Africa
Jan Vermeulen reports: South African Nespresso distributor Top Coffee has sent a notice to clients informing them that their names, phone numbers, and email addresses may have been leaked. According to the notice, the personal information may have been temporarily exposed through a third-party supplier. The distributor doesn’t believe that any customer financial information was…
Long delay before Cybersecurity NSW notified of Accellion hack
Anton Nilsson reports: NSW agencies may have delayed reporting a massive cyber attack to authorities for nearly a month, officials revealed on Monday. The breach of a software known as Accellion in December 2020 affected businesses and agencies worldwide, including Transport for NSW which had sensitive information stolen and posted on the dark web. Cybersecurity NSW…
Hackers interrupt Catholic charity’s online press conference on Ukraine
Hacktivists on both sides of the Russia-Ukraine war have been busy. CNA reports that some hackers disrupted a Zoom event to stream obscenities and to post fake messages from participants — because disrupting faith-based events is always going to score points with the public, right? An online press conference by a Catholic charity on the…
Conti and Karma actors attack healthcare provider at same time through ProxyShell exploits
I’ve occasionally seen evidence that one victim was hit by more than one group or threat actor, but Sophos provides the most detailed reporting I’ve ever seen on one such incident. Sean Gallagher takes us through the saga that impacted a healthcare provider in Canada hit by two separate ransomware groups — Karma and Conti….