In September, 2018, the International Airlines Group (IAG) announced that British Airways was investigating a possible data breach involving its website and mobile application. Soon after, we learned that 380,000 payments had been compromised in a few weeks between August 21, when Magecart malware was injected, and early September. Today, the U.K.’s Information Commissioner’s Office…
Category: Of Note
Sometimes, paying the ransom doesn’t solve the problems
Paying ransom doesn’t always guarantee that a ransomware victim will be able to recover all of the encrypted data. Some more food for thought in a news story today about ransomware in the New York Times that highlights how small government entities are being targeted recently: The F.B.I. said it had received nearly 1,500 ransomware…
Mystery of NSA Leak Lingers as Stolen Document Case Winds Up
Tami Abdollah and Eric Tucker of AP report on what is arguably the most significant insider breach in our government of this century: Federal agents descended on the suburban Maryland house with the flash and bang of a stun grenade, blocked off the street and spent hours questioning the homeowner about a theft of government…
Urgent Cyber Warning For Hospitals Over Threat Of ‘WannaCry Repeat’: Report
Zak Doffman reports: In the two years since the devastating WannaCry cyberattack hit worldwide, institutions have not done enough to protect themselves against a repeat. And that’s especially true in the healthcare sector. A report this week by Imperial College London’s Institute of Global Health Innovation (IGHI) warns that hospitals “remain vulnerable to cyber attack,…
UK: Eurofins Scientific: Forensic services firm paid ransom after cyber-attack
Danny Shaw reports: The UK’s biggest provider of forensic services has paid a ransom to criminals after its IT systems were disrupted in a cyber-attack, BBC News has learned. Eurofins Scientific was infected with a ransomware computer virus a month ago, which led British police to suspend work with the global testing company. Read more…
‘Silence’ hackers hit banks in Bangladesh, India, Sri Lanka, and Kyrgyzstan
Catalin Cimpanu reports: A group of hackers specialized in attacking banks has hit again, and this time they’ve breached four targets in Asia, respectively in Bangladesh, India, Sri Lanka, and Kyrgyzstan, security researchers from Group-IB have told ZDNet. The only incident that is currently public is one impacting Dutch Bangla Bank Limited, a bank in…