HHS recently issued an alert about a known vulnerability allowing access to some picture archiving communications systems (PACS). The vulnerability had been reported two years ago, and again months later, and there had been updated alerts since then. HHS is advising entities to address this as a priority now if they have not done so…
Malware abuses OBS live-streaming software to record victims’ screens
Catalin Cimpanu reports: Security researchers have uncovered a new malware strain that uses the popular OBS Studio live-streaming app to record and broadcast the screen of its victims to attackers. Named BIOPASS, this malware is a remote access trojan (RAT) coded in Python that was spotted in recent attacks targeting online gambling companies in China. Discovered…
Ten Long Island Residents Charged in Nationwide Identity Fraud Scheme
From the Law Firm Newswire: Thirteen people and three corporations were charged on a 108-count indictment in relation to a nationwide synthetic identity fraud scheme that netted over $1 million from financial institutions. Authorities believe the defendants also amassed a credit limit of hundreds of millions of dollars across the United States. The scam’s alleged…
AU: Cyber-attackers partially knockout Australian education department, while unrelated leak impacts Blackboard Collab users
While New South Wales’ new COVID outbreak is causing problems, it has other problems as well. On July 9, GRC World Forums reported: The New South Wales (NSW) department of education in Australia has deactivated some internal systems after becoming the victim of a cyber-attack. The timing has created considerable challenges for staff as they…
Mint Mobile hit by a data breach after numbers ported, data accessed
Lawrence Abrams reports: Mint Mobile has disclosed a data breach after an unauthorized person gained access to subscribers’ account information and ported phone numbers to another carrier. According to the data breach notification email sent to affected subscribers this weekend, between June 8th and June 10th, a threat actor ported the phone numbers for a…
Ca: Data theft from Meals on Wheels reveals gap in provincial privacy legislation, expert says
Charles Rusnell and Jennie Russell report: The theft of a charity’s entire database containing the personal information of more than 27,000 clients, donors, volunteers and employees reveals a major gap in Alberta’s privacy legislation, an expert says. In a letter sent to those affected in early June, Meals on Wheels said it called Edmonton police on…