Update 8:30 pm: The police have now confirmed unauthorized access to their server. The FBI is investigating. The threat actors known as Babuk have added the Metropolitan Police D.C. to their leak site, adding, “We will not comment this time: Even such an organization has huge security gaps, we advise them to get in touch…
Category: Of Note
It: Union of Comuni Colli del Monferrato, cyber attack: hackers publish data
Marco A. De Felice reports: The Avaddon ransomware group publishes screenshots of some data stolen during the cyber attack on the Unione di Comuni Colli del Monferrato, but by mistake it puts the wrong Unione (Unione dei Colli DiVini in the heart of Monferrato) under DDoS attack. Oops? But as Marco notes, that wasn’t the…
A ransomware gang made $260,000 in 5 days using the 7zip utility
Lawrence Abrams reports: A ransomware gang has made $260,000 in just five days simply by remotely encrypting files on QNAP devices using the 7zip archive program. Starting on Monday, QNAP NAS users from all over the world suddenly found their files encrypted after a ransomware operation called Qlocker exploited vulnerabilities on their devices. While most ransomware groups…
Password manager Passwordstate hacked to deploy malware on customer systems
Catalin Cimpanu reports: A mysterious threat actor has compromised the update mechanism of enterprise password manager application Passwordstate and deployed malware on its users’ devices, most of which are enterprise customers. Click Studios, the Australian software firm behind Passwordstate, has notified its 29,000 customers earlier today via email. Read more on The Record.
Maine brothers sue Northern Light for sharing their info with Blackbaud
Judy Harrison reports on a lawsuit stemming from the Blackbaud ransomware incident in 2020 that has been covered previously on this site. Two brothers from Holden have sued Northern Light Health over a data breach last May that left them vulnerable to identity theft and affected more than 650,000 people. The complaint, filed Tuesday in…
Supreme Court holds that monetary relief is unavailable under Section 13(b) of the Federal Trade Commission Act
Brian Wolfman notes: The first paragraph of the Court’s unanimous opinion in AMG Capital Management v. FTC sums it up: Section 13(b) of the Federal Trade Commission Act authorizes the Commission to obtain, “in proper cases,” a “permanent injunction” in federal court against “any person, partnership, or corporation” that it believes “is violating, or is about to…