The Office of Inadequate Security
In April 2023, DataBreaches reported two ransomware groups had each listed Albany ENT & Allergy Services (AENT) on their respective leak sites. But one month later, when AENT sent notifications to regulators and 224,486 affected employees and patients, its notification letter made no mention of any ransomware attack, any encryption of files, any ransom demands,…
Funny how Russia doesn’t like it when someone interferes with their elections, huh? Daryna Antoniuk reports: Russia’s Federal Security Service (FSB) announced that it had detained a Moscow resident for conducting distributed denial-of-service (DDoS) attacks during local elections in September, targeting infrastructure in the capital and the Moscow region. According to the agency’s press service, the…
Suzanne Smalley reports: The Biden administration must fix several provisions threatening human rights and cybersecurity in the United Nations cybercrime convention that is heading to the General Assembly for a vote, six Democratic senators said in a letter sent to administration officials Tuesday. The letter to Secretary of State Antony Blinken, Secretary of Commerce Gina Raimondo, Attorney…
Iain Thomson reports: The French equivalent of the US Secret Service may have been letting their guard down, as an investigation showed they are easily trackable via the fitness app Strava. An investigation by Le Monde has shown that members of the Security Group for the Presidency of the Republic (GSPR) have been openly displaying…
Harvey Cashore, Daniel Leblanc report: At the height of this year’s tax season, the Canada Revenue Agency discovered that hackers had obtained confidential data used by one of the country’s largest tax preparation firms, H&R Block Canada. Imposters used the company’s confidential credentials to get unauthorized access into hundreds of Canadians’ personal CRA accounts, change…
AUSTIN, Texas – The Department of Justice joined the Netherlands, Belgium, Eurojust and other partners in announcing an international disruption effort against the current version of RedLine Infostealer, one of the most prevalent infostealers in the world that has targeted millions of victim computers, and the closely-related META Infostealer. The Justice Department, FBI, Naval Criminal…