The Straits Times reports: Indonesia said it is beginning to recover data that had been encrypted in a major ransomware attack in June which affected more than 160 government agencies. The attackers, identified as Brain Cipher, asked for US$8 million (S$10.7 million) in ransom to unlock the data, before they later apologised and released the decryption key…
Category: Of Note
AT&T Says New Hack Includes Records of Customer Calls, Texts
Christopher Palmieri reports: AT&T Inc. suffered a massive hack of customer data — separate from one reported earlier this year — that included records of calls and texts for nearly all of its mobile-phone users for a six-month period in 2022, one of the biggest breaches of private communications data in recent memory. The company said…
Notorious Hacker Kingpin ‘Tank’ Is Finally Going to Prison
Matt Burgess reports: For more than a decade, Vyacheslav Igorevich Penchukov—a Ukrainian who used the online hacker name “Tank”—managed to evade cops. When FBI and Ukrainian officials raided his Donetsk apartment in 2010, the place was deserted and Penchukov had vanished. But the criminal spree came to a juddering halt at the end of 2022,…
The President Ordered a Board to Probe a Massive Russian Cyberattack. It Never Did.
by Craig Silverman, ProPublica This story was originally published by ProPublica. ProPublica is a Pulitzer Prize-winning investigative newsroom. Sign up for The Big Story newsletter to receive stories like this one in your inbox. Series: Zero Trust: Inside Microsoft’s Cybersecurity Failures Investigating how the world’s largest software provider handles the security of its own ubiquitous…
New Pennsylvania law will offer added protections for victims of data breaches and new reporting requirements
NCPA reports: Harrisburg, Pa. — A new state law will help protect consumers impacted by data breaches. Act 33 of 2024 requires an impacted organization to provide a free credit report and one year of credit monitoring to affected consumers. It also strengthens notification requirements and mandates notification of the Pennsylvania Office of Attorney General if a data…
Insider Threat: Fake Therapist Fooled Hundreds Online Until She Died, State Records Say
In April 2023, Brightside Health, Inc. reported a breach to HHS that affected 767 patients. The incident was coded as “unauthorized access/disclosure” of information located in “EMR, other.” HHS’s closing statement on the public breach tool described the incident this way: The covered entity (CE), Brightside Health, reported that an unauthorized individual accessed the protected…