Dan Goodin reports: The US Pentagon, the FBI, and the Department of Homeland Security on Friday exposed a North Korean hacking operation and provided technical details for seven pieces of malware used in the campaign. The US Cyber National Mission Force, an arm of the Pentagon’s US Cyber Command, said on Twitter that the malware is “currently…
Category: Phishing
Puerto Rico Loses $2.6 Million in Phishing Scam
AP reports: Puerto Rico’s government has lost more than $2.6 million by falling for an email phishing scam, a senior official said Wednesday. The finance director of the island’s Industrial Development Company, Rubén Rivera, said in a complaint filed with police Wednesday that the agency sent the money to a fraudulent account. Read more on…
Golden Entertainment addresses data breach
Casino Beats reports: Golden Entertainment has notified customers, employees, and vendors of an incident involving unauthorised access to employee’ email accounts. […] The investigation undertaken by Golden Entertainment led to the finding that access was obtained to the email accounts multiple times between 30 May 2019 and 6 October 2019. Despite the findings in regards to…
Phishing scam targets St. Louis Community College; private information exposed
Kevin S. Held reports: More than 5,100 St. Louis Community College students and employees had their personal information accessed via a phishing scam. The data breach was discovered on January 13, according to a spokesperson for the college. Cybercriminals targeted employees and students through “a series of email phishing attacks” which ultimately gave them access…
Data breach potentially exposes Eastern Virginia Medical School employees’ bank accounts
Elisha Sauers reports: Eastern Virginia Medical School is trying to beef up its email security following a phishing scam that could have exposed employees’ personal information, including bank accounts and Social Security numbers. EVMS president and provost Richard V. Homan informed staff of the breach Monday. The school had discovered Wednesday that some files might…
VillageCareMAX & VillageCare Rehabilitative & Nursing Center Notices of Data Privacy Incident After Business Email Compromise
The following is part of the notice Village Senior Services Corporation d/b/a VillageCareMAX posted on their website. Note that the attacker was apparently requesting names and Medicaid ID numbers, which makes me wonder what the plan for misuse was — insurance fraud, perhaps? VillageCareMAX (“VCMAX”) is providing notice of an incident that may affect the…