François Manens reports (translation): 50,000 user accounts of French hospital agents are for sale on a cybercriminal forum. This data could allow buyers to access the computer networks of certain health establishments. Once introduced to the system, criminals can deploy their ransomware and cripple the hospital. New alert for French hospitals, this time launched by the monitoring site…
Fr: The city of Chalon-sur-Saône victim of a cyberattack
Le Dauphine reports (translation): After the Villefranche-sur-Saône hospital or even the Dax hospital , it is the turn of the city and the agglomeration of Chalon-sur-Saône to be victims of a cyberattack. In the night from Saturday to Sunday, the computer systems were affected by “a crypto-virus”, told Frédéric Iacovella, director general of the services of the City and…
Follow-up: Data from the Toledo Public Schools attack by Maze reportedly being misused
In September, DataBreaches.net reported that Maze threat actors claimed to have attacked an Ohio public school district, but the district was not responding to inquiries from this site about the claims. One month later, this site named the district as Toledo Public Schools and reported that while Maze had dumped files with student and employee…
Experian challenged over massive data leak in Brazil
Angelica Mari reports: After receiving feedback from Experian over a massive data leak in Brazil, São Paulo state consumer rights foundation Procon described the company’s explanations as “insufficient” and said it is likely that the incident was initiated in a corporate environment. Procon notified the credit information multinational following the emergence of a leak that…
FireEye and Accellion provide more details on attack
Andrew Moore, Genevieve Stark, Isif Ibrahima, Van Ta of FireEye write: Starting in mid-December 2020, malicious actors that Mandiant tracks as UNC2546 exploited multiple zero-day vulnerabilities in Accellion’s legacy File Transfer Appliance (FTA) to install a newly discovered web shell named DEWMODE. The motivation of UNC2546 was not immediately apparent, but starting in late January 2021, several organizations…
Sophisticated hackers snuck sleeper malware into nearly 30,000 Macs
Sean Hollister reports: There’s a popular stereotype that Apple’s computers are largely immune to malware. Not only is is that incorrect, it appears that sophisticated hacker(s) might have been toying with the idea of a heist or drop nasty enough they’d have needed to cover their tracks. As Ars Technica reports, security researchers at Malwarebytes and Red Canary discovered…