Mathieu Tartare writes: In November 2019, we discovered a new campaign run by the Winnti Group against two Hong Kong universities. We found a new variant of the ShadowPad backdoor, the group’s flagship backdoor, deployed using a new launcher and embedding numerous modules. The Winnti malware was also found at these universities a few weeks…
Category: Non-U.S.
Three suspects arrested in Maltese bank cyber-heist
Catalin Cimpanu reports: British police have arrested yesterday three individuals that they believe are involved in the February 2019 hack of Bank of Valletta (BOV), one of Malta’s biggest banks. National Crime Agency (NCA) officers arrested two males, aged 22 and 17, in London, and a third suspect, a 39-year-old male in Belfast, Northern Ireland….
Japanese company NEC confirms 2016 security breach
Catalin Cimpanu reports: Japanese electronics and IT company NEC Corp disclosed a security breach today that took place more than three years ago, in December 2016. The company’s admission comes after reports in Japanese media [1, 2, 3] that the company might have suffered a security breach but decided to keep it quiet. Read more on ZDNet.
Ca: Former Covenant Health employee fined for privacy breaches after accessing health records of 16 people
Anna Junker reports: A former employee for Covenant Health has been fined after pleading guilty to knowingly accessing health information contrary to the Health Information Act. On Jan. 20, Amanda Vandenberg admitted to illegally accessing health records of 16 people on 465 occasions that occurred at the Misericordia Community Hospital where she was employed as…
The UK government to strengthen security of internet-connected products
January 27 — A new law will protect millions of users of internet-connected household items from the threat of cyber hacks, Digital Minister Matt Warman announced today. The plans, drawn up by the Department for Digital, Culture, Media and Sport (DCMS), will make sure all consumer smart devices sold in the UK adhere to the three…
UK: Students got £140,000 from University of East Anglia for private data leak
Bethany Wales reports: The leak in June 2017 saw an email containing confidential details about students’ extenuating circumstances sent to hundreds of their peers. The circumstances, detailed in a spreadsheet, included suicidal thoughts, sexual assault, and serious family illnesses and bereavements. Now, a Freedom of Information request has revealed the university’s insurers paid out a…