Lawrence Abrams reports: Johnson Controls International has suffered what is described as a massive ransomware attack that encrypted many of the company devices, including VMware ESXi s […] Yesterday, a source told BleepingComputer that Johnson Controls suffered a ransomware attack after initially being breached at its Asia offices. BleepingComputer has since learned that the company…
Category: Subcontractor
ChildFund NZ discloses third-party breach
ChildFund in New Zealand has issued a public notice about a data breach involving a telemarketing company, Pareto Phone Limited. ChildFund had contracted with Pareto in 2014 to conduct fundraising activity on its behalf. ChildFund does not say when it may have stopped working Pareto, but Pareto suffered a cyberattack in April of this year…
British charities warn supporters their personal data has been breached
Graham Cluley writes: UK charities including Shelter, the RSPCA, the Dogs Trust, Battersea Dogs and Cats Home, and Friends of the Earth have warned their supporters that hackers have stolen their data following a breach at a supplier. The charities themselves haven’t been hacked. The problem instead lies with third-parties working with the charities to…
Biggest Crypto Hack of 2023: Mixin Network Stops Withdrawals After Losing $200 Million to Hackers
Daniel Warren reports: The Mixin network was recently hit by a multi-million dollar hack. Mixin confirmed that over $200 million worth of cryptocurrencies were wiped from its mainnet due to a security breach on September 23. According to recent data, this is equivalent to half of the net TVL of all mixin-based protocols. In its statement,…
National Student Clearinghouse notifies California on behalf of almost 900 schools affected by MOVEit breach
Well, we expected there would be a lot of schools notified by the National Student Clearinghouse about the MOVEit breach, but now we have a bit more of the scope. NSC has notified the California Attorney General’s Office on behalf of almost 900 schools. Their notification letter to those affected indicated that the types of…
Nansen Warns Of Potential Phishing Attacks Following Vendor Security Incident Exposing Customer Data
Liam ‘Akiba’ Wright reports: Crypto analytics platform Nansen has revealed that a bad actor accessed its admin system to provision customer accounts. On Sept. 20, a security breach by one of Nansen’s third-party vendors led to compromised customer access, underscoring the ever-present digital risk, particularly in the continually evolving arena of blockchain technology and cryptocurrency….