Sarah Coble reports: A threat group has once again taken to the internet to publish data stolen from alleged victims who refuse to cooperate with its ransom demands. In December 2019, the MAZE ransomware group published online a portion of the 120 GB of data they claimed to have stolen from Southwire, North America’s most prominent wire…
Category: Of Note
UK: DSG Retail Ltd fined £500,000 for failing to secure information of at least 14 million people
From the Information Commissioner’s Office, this release: The Information Commissioner’s Office (ICO) has fined DSG Retail Limited (DSG) £500,000 after a ‘point of sale’ computer system was compromised as a result of a cyber-attack, affecting at least 14 million people. An ICO investigation found that an attacker installed malware on 5,390 tills at DSG’s Currys PC World…
What OPSEC? Member of “thedarkoverlord” allegedly used his personal details to set up hacking and extortion-related accounts.
In what seems like a mind-boggling OPSEC #FAIL, a U.K. man associated with thedarkoverlord allegedly used his real details to create bank accounts as well as to open email accounts, phone numbers, vpn, Twitter, and PayPal accounts that thedarkoverlord used as part of its operations to hack and extort victims. For a group that signed…
FTC Finalizes Settlement with Utah Company and its former CEO over Allegations they Failed to Safeguard Consumer Data
The Federal Trade Commission has granted final approval to a settlement with a Utah-based technology company related to allegations that the firm failed to put in place reasonable security safeguards, allowing a hacker to access the personal information of more than a million consumers. The FTC alleged that InfoTrax Systems, L.C. and its former CEO Mark Rawlins failed to…
Maze Ransomware Sued for Publishing Victim’s Stolen Data; Irish ISP hosting MazeNews takes down site
Lawrence Abrams reports: The anonymous operators behind the Maze Ransomware are being sued by a victim for illegally accessing their network, stealing data, encrypting computers, and publishing the stolen data after a ransom was not paid. The company suing Maze is Southwire, a leading wire and cable manufacturer from Carrollton, Georgia, who was attacked in December…
The ransomware attack that stole Christmas in Arkansas
Catalin Cimpanu has an update on a disastrous ransomware attack previously noted involving The Heritage Company in Arkansas. As previously reported, the firm shut down on December 23 for what they hoped would be a temporary closure while they worked to recover from a ransomware attack. Their unexpected closure suddenly left 300 employees without paid employment….