I don’t know about you, but we’re seeing a ton of new fraud attempts via messages. Keep yourself and your relatives safe (especially relatives who may not be particularly scam savvy), by telling them what to expect. Audrey Conklin reports: Microsoft and delivery service DHL led a list of the 10 most-imitated brands in global phishing attempts in…
Presidio Employee Files Class Action Over Data Breach
Kathryn M. Rattigan of Robinson + Cole writes: North American IT company Presidio faces a proposed data breach class action by an employee for an incident involving employee data. Eric LaPrairie, a former Presidio employee, received a notice of a data breach from Presidio, and about a month later found out that he was the…
Gay dating site Manhunt hacked, thousands of accounts stolen
Zack Whittaker reports: Manhunt, a gay dating app that claims to have 6 million male members, has confirmed it was hit by a data breach in February after a hacker gained access to the company’s accounts database. In a notice filed with the Washington attorney general’s office, Manhunt said the hacker “gained access to a database that…
Detecting Clop Ransomware
Splunk Threat Research Team reports: As ransomware campaigns continue, malicious actors introduce different modus operandi to target their victims. In this blog, we’ll be taking a look at the Clop ransomware. This crimeware was discovered in 2019 and is said to be used for an attack that demanded one of the highest ransom amounts in recorded history…
DOL Issues Cybersecurity Best Practices for ERISA Covered Retirement Plans
Joseph J. Lazzarotti of JacksonLewis writes: Today, the U.S. Department of Labor’s Employee Benefits Security Administration (EBSA) issued much anticipated cybersecurity guidance for employee retirement plans. This comes more than four and a half years after the ERISA Advisory Council, a 15-member body appointed by the Secretary of Labor to provide guidance on employee benefit plans, shared with the…
Houston Rockets Hit by “Babuk” Ransomware
Bill Toulas reports: The ransomware group known as “Babuk” has added Houston Rockets to its victim list, warning about the imminent leak of 500GB of stolen data if their payment demands aren’t met. The threat actors present screenshots of the exfiltrated files as proof of possession, showing what appears to be contracts, non-disclosure agreements, customer…