Vitali Kremez & Yelisey Boguslavskiy write: This redacted report is based on our actual proactive victim breach intelligence and subsequent incident response (not a simulated or sandbox environment) identified via unique high-value Conti ransomware collections at AdvIntel via our product “Andariel.” This is a redacted TLP:WHITE version of the larger AdvIntel findings. Read their report…
Category: Of Note
Resource: Ransomware attacks on healthcare sector (CyberPeace Institute)
CyberPeace Institute has made a ransomware incident tracer publicly available. The not-for-profit organization compiled and analyzed 295 cyberattacks against the healthcare sector across 35 countries from June 2020 until now. You can access their data and analyses at https://cit.cyberpeaceinstitute.org/explore
US schools leaked 28.6 million records in 1,851 data breaches since 2005
Sam Cook reports: Since 2005, K–12 school districts and colleges/universities across the US have experienced over 1,850 data breaches, affecting more than 28.6 million records. Our team of researchers analyzed data over the past 15 years to find out where the hot spots are, the biggest causes of these breaches, and how many students have…
NY Man Pleads Guilty in $20 Million SIM Swap Theft
Brian Krebs reports: A 24-year-old New York man who bragged about helping to steal more than $20 million worth of cryptocurrency from a technology executive has pleaded guilty to conspiracy to commit wire fraud. Nicholas Truglia was part of a group alleged to have stolen more than $100 million from cryptocurrency investors using fraudulent “SIM swaps,” scams…
Desjardins reaches $200M class action settlement in wake of data breach
The Canadian Press reports that Mouvement Desjardins has reached a $200-million settlement with plaintiffs in a class action suit launched after a massive data breach in June 2019. The settlement has to be approved by the Superior Court of Quebec. Read more at Montreal Gazette. A press release issued by plaintiffs’ counsel states, in part:…
White House Policy Gives Agencies 24 Hours to Report Attacks
Devon Warren-Kachelein reports: A new memo issued by the U.S. National Security Council within the Biden White House requires critical cybersecurity agencies to relay cyber incidents rising to national security threats to the council within 24 hours. The move is reportedly an effort to get cybersecurity advisers close to the president to assess incidents targeting…