Jessica Haworth reports: A phishing attack at Australian pension provider Spirit Super has resulted in “some personal details being compromised”. The ‘super fund’ confirmed that user data was breached on May 19, 2022 after an employee’s email account was accessed. An investigation into the incident found that there was “unauthorized access to a mailbox containing personal data”…
Category: Phishing
Phishing Attacks for Initial Access Surged 54% in Q1
Jai Vijayan reports: Threat actors doubled down on their use of phishing emails as an initial attack vector during the first quarter of 2022 — and in many cases then used that access to drop ransomware or to extort organizations in other ways. Researchers from Kroll recently analyzed data gathered from security incidents they responded…
Settlement in Solara Medical Supplies litigation gets preliminary approval
As reported by TopClassActions, Solara Medical Supplies has agreed to a $9.76 million class action settlement benefiting those whose personal information may have been compromised during a 2019 data breach that occurred between April 2 and June 20, 2019. That would include employees and patients whose protected health information was in employee email accounts compromised…
He thought he was logging in to his cryptocurrency account. Then hackers stole his life savings.
Ken Dilanian and Michelle Cho report: A few days before Christmas last year, Philip Martin sat in front of his computer to check his cryptocurrency balance. It was the beginning of what would become, for him, an ongoing nightmare. Martin told NBC News he thought he was typing the web address for his cryptocurrency exchange,…
Mission School District suffers IT breach, phishing emails being sent from teachers’ accounts
Patrick Penner reports: The Mission School District has suffered an IT breach and phishing emails are being sent out from teachers’ email accounts. Do not open them. The Record received two of these emails from seperate (sic) teachers today, which contain little information besides a greeting and FYI (for your information), directing the recipient to…
U.S. DoD tricked into paying $23.5 million to phishing actor
Bill Toulas reports: The U.S. Department of Justice (DoJ) has announced the conviction of Sercan Oyuntur, 40, resident of California, for multiple counts relating to a phishing operation that caused $23.5 million in damages to the U.S. Department of Defense (DoD). The fraudster managed to divert to his personal bank account DoD funds destined for a…