Kate Goodwin reports: A global pandemic has left life sciences companies with giant targets on their backs for cyberattacks. As of December, at least six pharmaceutical companies in the U.S., U.K. and South Korea working on COVID-19 treatments were targeted by North Korean hackers, according to the Wall Street Journal. The hackers were out for sensitive…
Flagstar Bank loses customers’ social security numbers after Accellion attack
Graham Cluley writes: Things don’t get much worse than having to admit to your employees that a gang of cybercriminals have broken into your infrastructure, stolen the private details (social security numbers, names and home addresses) of your staff, and are demanding that your company pays a ransom before further sensitive data is leaked. Well,…
Heart of Texas Community Health Center notifies some patients of email-related breach
Public Notice – HIPAA Security Breach – Heart of Texas Community Health Center (formerly “Family Health Center”) PUBLIC NOTICE NOTE: This information is only for female patients of Heart of Texas Community Health Center (formerly “Family Health Center” and hereinafter “Heart of Texas Community Health Center”) who are between the ages of 21and 65 and…
Threat actors leak files with protected health information from U. Miami
In December and January, threat actors successfully exploited multiple vulnerabilities in an older file transfer system by Accellion. A number of Accellion’s clients subsequently found themselves on the receiving end of extortion demands to either pay the threat actors, or have their data dumped publicly. A number of firms apparently refused to pay, and their…
CZ: Railway administration was attacked by hackers, operations not endangered
Translation from ceskatelevize.cz: The railway administration has been facing a cyber attack since last week, Deník N reported . The state organization, which provides traffic on the railways, assured that it was not affected by the attack or traffic safety. The attack followed other previous incidents that targeted state organizations or ministries. According to the spokesman of the Railway Administration…
Vengeful IT Contractor Sentenced to Two Years for Deleting Carlsbad Company’s Microsoft User Accounts
March 22 — Deepanshu Kher was sentenced today in federal court to two years in prison for accessing the server of a Carlsbad Company and deleting over 1,200 over the company’s 1,500 Microsoft User Accounts. According to court documents, Kher was employed by an information technology consulting firm from 2017 through May 2018. In 2017,…