Brian Krebs reports: A 22-year-old man from the United Kingdom arrested this week in Spain is allegedly the ringleader of Scattered Spider, a cybercrime group suspected of hacking into Twilio, LastPass, DoorDash, Mailchimp, and nearly 130 other organizations over the past two years. The Spanish daily Murcia Today reports the suspect was wanted by the FBI and arrested in Palma de Mallorca as he…
Category: Of Note
BreachForums back online — or it is a honeypot? (UPDATED)
On June 12, BreachForums reappeared on clearnet and Tor. The owner — or someone with access to the forum owner’s account — interacted a bit in the ShoutBox and posted an announcement: Hello BreachForums users! Some wild stuff has gone down recently. First off, Spamhaus has blacklisted our SMTP host. Then, we ran into more…
Federal criminal investigation involving Perry Johnson & Associates data breach
The Perry Johnson & Associates (PJ&A) data breach was the biggest reported breach involving protected health information in 2023, with more than 13 million patients affected1. Now WBEZ in Chicago reports that there is a federal criminal investigation related to the breach at the medical transcription service. Federal authorities are conducting a criminal investigation into…
Developing: BreachForums down, ShinyHunters’ and forum Telegram channels deleted?
Something seems to be up — or down, to be more accurate. BreachForums clearnet and onion sites are down, with the clearnet site returning a “502- Bad Gateway” response. A WhoIs lookup for BreachForums.st shows the name servers as ddos-guard.net. That is the domain used by ShinyHunters for the forum, so the government does not…
Frontier Communications Hack Ensnares 750,000 Customers, SSNs Stolen
Michael Kan reports: April’s cyberattack on internet service provider Frontier Communications enabled hackers to steal Social Security numbers for 750,000 users. In a data breach notice sent to Maine’s attorney general, the ISP says the incident affected 751,895 people. The company is preparing to send out data breach notifications to affected consumers as the hacking group allegedly responsible…
HC3: Analyst Note: Healthcare Sector DDoS Guide
May 30, 2024 HC3: Analyst Note TLP:CLEAR Report: 20240530120 Executive Summary A Distributed-Denial-of-Service (DDoS) attack is a type of cyber attack in which an attacker uses multiple systems, often referred to as a botnet, to send a high volume of traffic or requests to a targeted network or system, overwhelming it and making it unavailable…