Zack Whittaker reports: A security lapse by a Jamaican government contractor has exposed immigration records and COVID-19 test results for hundreds of thousands of travelers who visited the island over the past year. The Jamaican government contracted Amber Group to build the JamCOVID19 website and app, which the government uses to publish daily coronavirus figures and allows…
UPDATED: California DMV halts data transfers with third-party company after Automatic Funds Transfer Services security breach
Update: As BleepingComputer reports, the AFTS attack appears to be the work of the Cuba ransomware threat actor(s) who claim to have exfiltrated “Financial documents, correspondence with bank employees, account movements, balance sheets, tax documents.” They offer to sell the data on their dedicated leak site on the dark web, but do not list any…
MN: School district employees falls for phishing attack; W-2 forms of 677 employees now compromised
David Colburn reports: REGIONAL- ISD 2142 fell prey to a common online phishing scheme on Feb. 4 when a scammer posing as Superintendent Reggie Engebritson used a fraudulent email to obtain the W-2 forms of 677 district employees. Engebritson sent a letter to staff the same day, informing them of the data breach. Read more…
Three North Korean Military Hackers Involved in Sony Pictures Hack, Wanna Cry, and Numerous Other Attacks Indicted in Wide-Ranging Scheme to Commit Cyberattacks and Financial Crimes Across the Globe
A federal indictment unsealed today charges three North Korean computer programmers with participating in a wide-ranging criminal conspiracy to conduct a series of destructive cyberattacks, to steal and extort more than $1.3 billion of money and cryptocurrency from financial institutions and companies, to create and deploy multiple malicious cryptocurrency applications, and to develop and fraudulently…
San Jose Man Pleads Guilty to Computer Hack that Shut Down Opening Day Concession Sales at San Jose Earthquakes Stadium
SAN JOSE – Salvatore A. La Rosa pleaded guilty today in federal court in San Jose to intentional damage to a protected computer, announced United States Attorney David L. Anderson and Federal Bureau of Investigation Special Agent in Charge Craig D. Fair. La Rosa, 41, of San Jose, admitted in his guilty plea to intentionally…
Hogeschool van Amsterdam and the University of Amsterdam hit in cyberattack
Emerce reports (translation): Unknown third parties have gained access to the ICT environments of the Hogeschool van Amsterdam and the University of Amsterdam, the Security and Operations Center has found. Measures are taken to limit the consequences and to ensure that education and research can proceed as undisturbed as possible. The schools have disabled several systems as…