Sergiu Gatlan reports: The operators behind Sodinokibi Ransomware published download links to files containing what they claim is financial and work documents, as well as customers’ personal data stolen from giant U.S. fashion house Kenneth Cole Productions. Sodinokibi (aka REvil) is a Ransomware-as-a-Service operation where the operators manage development of the ransomware and the payment portal used…
Category: U.S.
Ryuk Ransomware Attack in Florida Forces Prosecutor to Drop Charges in Drug Cases
Silviu Stahie reports: A ransomware attack against the police department in Stuart, Florida last year had an unexpected consequence; the police officers had to drop several cases after losing important evidence. Read about it on Hot for Security. The story was first reported by WPTV.
How a Hacker’s Mom Broke Into a Prison—and the Warden’s Computer
Lily Hay Newman reports: John Strand breaks into things for a living. As a penetration tester, he gets hired by organizations to attack their defenses, helping reveal weaknesses before actual bad guys find them. Normally, Strand embarks on these missions himself, or deploys one of his experienced colleagues at Black Hills Information Security. But in…
Chinese dissident can sue law firm over hack that exposed information online, judge rules
Debra Cassens Weiss reports: A federal judge in Washington, D.C., has ruled that a Chinese asylum-seeker can sue the Clark Hill law firm over a 2017 hack that allegedly exposed personal data online. U.S. District Judge James Boasberg ruled last week in the case of Guo Wengui, who describes himself in the malpractice suit as…
Munson Healthcare notifies patients after discovering compromised employee email accounts contained PHI employee email accounts compromised
Munson Healthcare in Michigan has published notice of a data breach: Munson Healthcare became aware of a recent data security incident where certain employee email accounts were accessed by an unauthorized third-party. Upon learning of this issue, Munson Healthcare commenced a prompt and thorough investigation, working closely with external cybersecurity professionals. After an extensive forensic…
Nigerian man arrested 3 years after $850,000 stolen from Boulder Valley School District
Dara Bitler reports: The Boulder County Sheriff’s Office says a Nigerian man has been arrested more than three years after $850,000 was stolen from the Boulder Valley School District in an email scam. According to the arrest affidavit, Sherifdeen Mogaji, 39, was arrested on February 21 and booked into the Boulder County Jail on suspicion of theft…