Sergiu Gatlan reports: Today, the Brazilian Federal Police arrested a Brazilian suspect in Feira de Santana, Bahia, believed to be part of the Lapsus$ extortion gang. The suspect was detained following an investigation started in December 2021 after last year’s breach of the Brazilian Ministry of Health. Read more at BleepingComputer. Related: Statement from the Brazilian…
Category: Of Note
New York Department of Financial Services settles charges against EyeMed with a $4.5 million penalty and remedial cybersecurity plan
In January 2022, DataBreaches reported that New York announced a $600,000 agreement with EyeMed that resolved a 2020 phishing incident that compromised the personal information of approximately 2.1 million consumers nationwide, including 98,632 in New York. But that was not the end of enforcement action and monetary penalties for EyeMed. Now the state’s Department of…
A Data Breach Is Bad, But Disclosing Too Much Could be Worse
Adam Stone reports: When state and local IT systems get breached, there’s a balancing act to be struck. How much can and should the public be told? Some advocates of transparency and accountability say anything that happens in the public realm ought to be public knowledge. On the opposite extreme, some IT leaders worry that…
Thumb drive with confidential Yukon gov’t case files found in Whitehorse pawn shop
CBC reports: The Yukon government, RCMP and the territory’s privacy commissioner are investigating how a thumb drive containing confidential case files belonging to the Health and Social Services department ended up at a Whitehorse pawn shop. City resident Brian Zink discovered the data after he bought the thumb drive at a pawn shop. Read more at CBC. h/t, @fanCRTCProfling
Police tricks DeadBolt ransomware out of 155 decryption keys
Sergiu Gatlan reports: The Dutch National Police, in collaboration with cybersecurity firm Responders.NU, tricked the DeadBolt ransomware gang into handing over 155 decryption keys by faking ransom payments. DeadBolt is a ransomware operation active since January and known for demanding 0.03 bitcoin ransoms after encrypting thousands of QNAP and Asustor Network Attached Storage (NAS) devices (20,000…
Australian police secret agents exposed in Colombian data leak by Guacamaya
For the past few weeks, @Chum1ng0 has been reporting on the Guacamaya hacktivists’ activities. They have already caused some consternation and problems in Mexico and Chile. Now there is an even more concerning aspect to the leaks. Bill Toulas reports: Identities of secret agents working for the Australian Federal Police (AFP) have been exposed after…