Socially engineered BEC attacks using X-rated material spike 974 percent. Becky Bracken reports: Attackers have amped up their use of X-rated phishing lures in business email compromise (BEC) attacks. A new report found a stunning 974-percent spike in social-engineering scams involving suggestive materials, usually aimed at male-sounding names within a company. The Threat Intelligence team…
Security flaws found in Samsung’s stock mobile apps
Zack Whittaker reports: A mobile security startup has found seven security flaws in Samsung’s pre-installed mobile apps, which it says if abused could have allowed attackers broad access to a victim’s personal data. Oversecured said the vulnerabilities were found in several apps and components bundled with Samsung phones and tablets. Oversecured founder Sergey Toshin told…
OH: Five Rivers Health Centers notified 155,748 patients after phishing incident
On May 28, Five Rivers Health Centers in Ohio notified HHS about a data security incident that impacted 155,748 patients. The following is their media notice, linked from the home page of their web site if you can find it (see attached, where I highlighted the location of the link on their home page). DataBreaches.net…
Chief Operating Officer of Network Security Company Charged with Cyberattack on Medical Center
Note: It seems possible that the incident described in DOJ’s press release below is the incident reported by Salted Hash and DataBreaches.net in 2018. According to Singla’s LinkedIn account, he was COO at Securolytics in Atlanta at the time of the Gwinnett breach. A Georgia man was arraigned today on charges arising out of a…
Fr: Camaïeu retailer and municipality of Pont-Saint-Esprit by security incidents
Marc Grosclaude of La Voix du Nord reports that retailer Camaïeu was hit by a cyberattack that has left it with stocks running low and difficulty in replenishing stock with computer systems affected. Quotes below are machine translations from the original French. “We don’t really know what’s going on,” admits a saleswoman from a…
Slilpp Marketplace Disrupted in International Cyber Operation
Slilpp was a Marketplace for Allegedly Stolen Online Account Login Credentials, Offering Over 80 Million Stolen Credentials for Over 1,400 Victim Providers Worldwide The Justice Department today announced its participation in a multinational operation involving actions in the United States, Germany, the Netherlands, and Romania to disrupt and take down the infrastructure of the online…