Lawrence Abrams reports: A new ransomware operation known as Lorenz targets organizations worldwide with customized attacks demanding hundreds of thousands of dollars in ransoms. The Lorenz ransomware gang began operating last month and has since amassed a growing list of victims whose stolen data has been published on a ransomware data leak site. Michael Gillespie…
Gary, Indiana targeted by ransomware attack
Riley Chloe reports that Gary, Indiana is trying to recover from a ransomware attack. All of its servers are now being restored and rebuilt. The FBI and the Department of Homeland Security were both alerted and a city spokesperson says they’re still investigating if anyone’s personal information was stolen. “If we discover that any information…
Jp: Two Salesforce incidents reportedly shut down online vaccination reservation systems, exposed other personal info
Updated May 18: See the Salesforce statement issued May 17 that says confirming that there was no data loss or breach involving the first incident described below. Yomiuri Shimbun reports: A failure in a cloud computing system provided by U.S.-based IT company Salesforce.com Inc. paralyzed COVID-19 vaccination reservation systems operated by local governments across Japan…
Georgia’s HB 156, requiring state notice for utility cybersecurity incidents, is now in effect
Lael Bellamy and Emily Maus of DLA Piper write: Georgia’s governor has signed into law House Bill 156, creating specific notice requirements for state agencies and utilities that experience cybersecurity attacks, data breaches or malware and requiring notice to the state director of emergency management in Georgia within two hours of notifying the federal emergency…
President Signs Executive Order Charting New Course to Improve the Nation’s Cybersecurity and Protect Federal Government Networks
The following statement refers to the Executive Order signed by President Biden. The full text of the Executive Order can be found here. White House – Today, President Biden signed an Executive Order to improve the nation’s cybersecurity and protect federal government networks. Recent cybersecurity incidents such as SolarWinds, Microsoft Exchange, and the Colonial Pipeline…
Operator of WeLeakInfo database marketplace sentenced to two years in prison
Catalin Cimpanu reports: One of the three operators of WeLeakInfo, a website that sold access to hacked databases, was sentenced today in the Netherlands to two years in prison, with one year suspended. In court proceedings that took place earlier this year, the suspect, a 23-year-old whose name was not released, admitted to managing the…