Ax Sharma reports another troubling instance of “Shoot the Messenger:” threatening or blaming those who responsibly disclose leaks that they discover. This episode appears to be brought to us via Apperta Foundation. Earlier this month, Dyke had discovered an exposed GitHub repository exposing passwords, API keys, and sensitive financial records which belonged to Apperta Foundation….
NXIVM sex-cult leader Keith Raniere under fire after lawyers accidentally reveal victim names in court docs
Noah Goldberg reports: Convicted sex-cult guru Keith Raniere and his legal team are in hot water for accidentally revealing the names of victims of the NXIVM leader in court documents Tuesday. The feds responded quickly, asking Brooklyn Federal Court Judge Nicholas Garaufis to seal the documents, which he agreed to and which was done early…
Top insurer CNA disconnects systems after cyberattack
Tim Starks reports: CNA, one of the U.S.’s top providers of cybersecurity insurance, is struggling with a cyberattack that prompted it to disconnect its systems from its network. Its website hasn’t been working for the last couple days, and at press time displayed the message, “The attack caused a network disruption and impacted certain CNA…
FBI sends out private industry alert about Mamba ransomware
A Private Industry Alert (PIA) was sent out from the FBI about Mamba ransomware on March 23. As Catalin Cimpanu reports about Alert Number CU-000143-MW The US Federal Bureau of Investigations has sent out this week a private industry notification to US organizations warning about attacks carried out by the Mamba ransomware gang, along with basic instructions…
Coveware censors post after ransomware actors use it for promotion
Sam Varghese reports: Incident response firm Coveware has deleted a small portion of an article it had posted online in 2019, after the actors behind the REvil ransomware group — also known as Sodinokibi — used it to promote the efficiency of their own decryptor over that of the one used by rival ransomware actor,…
MI: Mott Community College addresses data security breach
Winter Keefer reports: Mott Community College announced Wednesday that it has identified and addressed a data security breach. Through an investigation, Mott Community College determined that an unauthorized person obtained access to its systems between November 27 and January 9, and transferred files maintained on one of its systems outside of its network. The college…