Vilius Petkauskas reports: Ukrainian police reported uncovering a group of hackers who used ransomware software to extort money from foreign businesses, mainly in the United States and South Korea. Authorities claim that hackers used Cl0p encryption software to decipher stolen data and demanded ransom for the access key. According to the police, suspects used double-extorsion,…
Alibaba Falls Victim to Chinese Web Crawler in Large Data Leak
Yang Jie and Liza Lin report: A Chinese software developer trawled Alibaba Group Holding Ltd. ’s popular Taobao shopping website for eight months, clandestinely collecting more than 1.1 billion pieces of user information before Alibaba noticed the scraping, a Chinese court verdict said. The software developer began using web-crawling software he designed on Taobao’s site starting in November…
Thai government apologises for data leak, blames “temporary glitch
Jack Arthur reports: The Thai government has released a statement apologising for the data leak on Monday which saw people who registered for a Covid vaccine have their personal information revealed. The government says there was a “temporary glitch” on the thailandintervac.com vaccination booking website and the error was because of “urgent system maintenance”. Read…
Ca: Humber River Hospital hit by ransomware variant, prompt response prevented encryption and exfiltration
Humber River Hospital in Toronto was hit with a ransomware attack in the early hours of the morning of June 14. Their response was organized, immediate, and reportedly very effective. The following is a statement prominently displayed on their web site today: Code Grey- Update On June 14, 2021, at about 0200 hrs we experienced…
SEC Settles Enforcement Action for Disclosure Controls Violations Stemming from Data Security Incident
Kate Hanniford writes: The SEC has settled an enforcement action against a large title insurer in connection with public statements and disclosures made by the company in May 2019 relating to a data security incident. The underlying data security incident was the subject of the first set of charges brought by the New York Division of Financial…
OK: Stillwater Medical Center officials investigating electronic security breach
KOCO5 has a brief item involving Stillwater Medical Center: Stillwater Medical Center officials say they recently discovered an electronic security breach that affected some of their systems. A social media post said they “immediately took steps to ensure the security of our environment, launched an investigation with the assistance of a computer forensic firm and notified law…