Marianne Kolbasuk McGee reports: Recent incidents involving inadvertent exposure of patient data on GitHub, a software development and version control platform designed for collaboration, point to the need to ensure that data loss prevention tools are implemented, available security controls are leveraged and employees are made aware of the risks involved in using internet-facing platforms….
UK: Colchester Institute suffers cyber security attack
The education sector has long been recognized as a relatively easy target for criminals. Now Colchester Institute in the U.K. has fallen prey to a cyberattack. The attack was first announced on April 29, but had occurred earlier in the week. In their first statement, posted on their web site, the school wrote As soon…
Toronto hit by ‘potential cyber breach’ from Accellion file transfer software
Howard Solomon reports: The City of Toronto says it suffered a “potential cyber breach” from a hack of data from use of its Accellion FTA file transfer server in January that may have involved the health information of individuals. In its initial statement today, the city said it was notified of a potential cyber breach related…
Babuk closes one shop, switches to RaaS?
In an update on Babuk’s site today, the threat actors write: I not so long ago wrote about the closure of babuk, yes, you all correctly understood babuk as a partensky program will be closed, but it will live in its new understanding, we are a promoted brand with the best pentesters of dark net…
Fr: Baclesse cuts its Internet connection to prevent the spread of a computer worm
The Centre François Baclesse is one of three proton therapy centers for fighting cancer in France. This week, they also had to fight the results of a cyberattack by heartless criminals. Thankfully, their recent investment in improving their cybersecurity seems to have paid off. On April 28, the center issued the following statement on their…
Cyberspies target military organizations with new Nebulae backdoor
Sergiu Gatlan reports: A Chinese-speaking threat actor has deployed a new backdoor in multiple cyber-espionage operations spanning roughly two years and targeting military organizations from Southeast Asia. For at least a decade, the hacking group known as Naikon has actively spied on organizations in countries around the South China Sea, including the Philippines, Malaysia, Indonesia, Singapore, and Thailand,…