Gareth Corfield reports: A business app developer’s unsecured Microsoft Azure blob left more than half a million confidential and sensitive documents belonging to its customers freely exposed to the public internet, The Register can reveal. Information contained in the blob included occupational health assessments, insurance claim documents from US firms underwritten by Lloyds of London, and…
Florida launches investigation into hacking of its servers
Bobby Caina Calvan of AP reports: Florida officials acknowledged Friday that state servers appear to have been compromised by overseas hackers who gained entry by imbedding malicious code into networking software from a Texas-based software company, SolarWinds. Two Florida officials who have knowledge of the matter but spoke on condition of anonymity because they were…
Ransomware attackers are making threatening phone calls to their victims, warns FBI
Catalin Cimpanu reports that ransomware threat actors are doing more than just calling their victims on the phone (as previously reported on this site and by ZDNet). Now at least one of the groups, DoppelPaymer, are allegedly threatening them. The incidents have been happening since February 2020, the FBI said in a PIN (private industry notification)…
FR: Services in Évreux and the agglomeration shut down after cyberattack
Laurent Philippot reports that the City of Evreux and the Évreux Portes de Normandie became victims of a ransomware attack about a week ago. At the present time, they locked down their systems to keep the attacker out, but that means that phones and internet are degraded or not working at this time. The mayor…
Microsoft says it identified 40+ victims of the SolarWinds hack, and more bad news…
Catalin Cimpanu reports: Microsoft said it identified more than 40 of its customers that installed trojanized versions of the SolarWinds Orion platform and where hackers escalated intrusions with additional, second-stage payloads. The OS maker said it was able to discover these intrusions using data collected by Microsoft Defender antivirus product, a free antivirus product built…
In wake of horrific Vastaamo breach, Finnish government tables laws to protect data from cyber criminals
Gerard O’Dwyer reports: The huge data security breach and cyber-ransom attack at Finland’s Vastaamo Psychotherapy Centre has provoked a swift response from the government, which is primed to introduce more rigid laws and measures to protect the country’s databases and sensitive information from cyber criminals. […] In a significant bolstering of Finland’s data security laws,…