At some point within the past 24 hours, the dedicated ransomware leak site operated by NetWalker ransomware threat actors was seized by law enforcement. The notice says that it was seized by the FBI in coordination with the U.S. Attorney’s Office for the Middle District of Florida, the Computer Crime and Intellectual Property Section of…
Category: Of Note
Emotet botnet goes offline as cops seize servers
Alex Scroxton reports: The Emotet botnet, one of the most widespread and dangerous cyber threats in operation today, has been forced offline in an international law enforcement operation by police on both sides of the Atlantic. The botnet’s infrastructure was taken down from the inside after being seized earlier this week in the Europol-coordinated operation….
AU: Woolworths gave customer data to NSW Health
Casey Tonkin reports: Woolworths gave data about customers who use its Everyday Rewards scheme to NSW Health in order to assist contact tracers. At the outbreak of the recent Berala cluster linked to a BWS in Sydney’s west, Woolworths analysed information from its Everyday Rewards loyalty scheme to find customers who visited the store at times when…
EDPB Publishes Guidelines on Examples regarding Data Breach Notification
Hunton Andrews Kurth writes: On January 18, 2021, the European Data Protection Board (“EDPB”) released draft Guidelines 01/2021 on Examples regarding Data Breach Notification (the “Guidelines”). The Guidelines complement the initial Guidelines on personal data breach notification under the EU General Data Protection Regulation (“GDPR”) adopted by the Article 29 Working Party in February 2018. The new draft…
CHwapi hospital hit by ransomware; operations canceled, and another city hit
Another hospital has been hit with ransomware. The following is a Google translation of a report The CHwapi, hospital center of Picardy Wallonia in Tournai, was the victim of a computer attack on Sunday evening. All non-urgent operations were canceled on Monday. No ransom demand has been demanded, according to management. The CHwapi was the…
Cybercriminals are Bypassing Multi-factor Authentication to Access Organisation’s Cloud Services
Graham Cluley writes: The US Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning to companies to better protect their cloud-based accounts after several recent successful attacks. According to an advisory published by CISA, an increasing number of attacks have succeeded as more employees have begun to work remotely with a variety…