It started as so many breaches do — with the compromise of an employee’s email account. From May 15 until June 24, a threat actor accessed the account and used it to send spam and phishing emails. The breach was discovered on June 24. Mercy Iowa City’s investigation, assisted by a forensics security firm. ultimately…
Category: U.S.
Cold storage giant Americold hit by cyberattack, services impacted
Lawrence Abrams reports: Cold storage giant Americold is currently dealing with a cyberattack impacting their operations, including phone systems, email, inventory management, and order fulfillment. Americold is a leading temperature-controlled warehouses operator who offers supply-chain services and inventory management for retailers, food service providers, and producers. Americold manages 183 warehouses worldwide and has approximately 13,000 employees….
American Bank Systems hit by ransomware attack, full 53 GB data dump leaked
Ax Sharma reports: American Bank Systems (ABS), a company that provides services to U.S. financial institutions and banks helping them “operate efficiently and confidently in a rapidly evolving – highly regulated – environment” has been hit by a ransomware attack this month. Avaddon, the ransomware group behind the attack had earlier alleged they had acquired over…
Correction and Update: Mount Locker team denies responsibility for Sonoma Valley Hospital attack
On November 9, DataBreaches.net published “Without Undue Delay” which catalogued health sector ransomware attacks where attackers had dumped patient data as part of an attempt to pressure their victims into paying ransom. That report was a companion to a post arguing that patients need to be notified sooner of ransomware dumps than HIPAA’s 60-day window…
Hosting Provider Exposed 63M Records incl. WP & Magento
I missed this report from Jeremiah Fowler the other day: On October 5th I discovered a non-password protected database that contained a large amount of monitoring and system logs. There were records indicating data backups, monitoring, error logging, and more. Upon further research, the database appeared to belong to the Texas-based cloud application hosting provider,…
Biden Is Expected to Keep Scrutiny of Tech Front and Center
Cecilia Kang, David McCabe and Jack Nicas report: The tech industry had it easy under President Barack Obama. Regulators brought no major charges, executives rotated in and out of the administration, and efforts to strengthen privacy laws fizzled out. The industry will have it much harder under president-elect Joseph R. Biden Jr. Bipartisan support to…