Joseph Menn reports: Belarus conducted widespread phishing attacks against members of the Polish military as well as Ukrainian officials, security researchers said Monday, providing more evidence that its role in Russia’s invasion of Ukraine has gone beyond serving as a staging area for Russian troops. Google’s threat-hunting team released details of the tricks deployed against…
Category: Non-U.S.
Nespresso data leak in South Africa
Jan Vermeulen reports: South African Nespresso distributor Top Coffee has sent a notice to clients informing them that their names, phone numbers, and email addresses may have been leaked. According to the notice, the personal information may have been temporarily exposed through a third-party supplier. The distributor doesn’t believe that any customer financial information was…
Long delay before Cybersecurity NSW notified of Accellion hack
Anton Nilsson reports: NSW agencies may have delayed reporting a massive cyber attack to authorities for nearly a month, officials revealed on Monday. The breach of a software known as Accellion in December 2020 affected businesses and agencies worldwide, including Transport for NSW which had sensitive information stolen and posted on the dark web. Cybersecurity NSW…
Hackers interrupt Catholic charity’s online press conference on Ukraine
Hacktivists on both sides of the Russia-Ukraine war have been busy. CNA reports that some hackers disrupted a Zoom event to stream obscenities and to post fake messages from participants — because disrupting faith-based events is always going to score points with the public, right? An online press conference by a Catholic charity on the…
Conti and Karma actors attack healthcare provider at same time through ProxyShell exploits
I’ve occasionally seen evidence that one victim was hit by more than one group or threat actor, but Sophos provides the most detailed reporting I’ve ever seen on one such incident. Sean Gallagher takes us through the saga that impacted a healthcare provider in Canada hit by two separate ransomware groups — Karma and Conti….
Toyota to halt operations at all Japan plants due to cyberattack
Reuters reports: Toyota said it will suspend all domestic factory operations on Tuesday losing around 13,000 cars after one a company supplying plastic parts and electronic component was hit by a suspected cyberattack. No information was immediately available about who was behind the attack or the motive. The attack comes just after Japan joined Western…