Victoria Kivilevich writes: Rising ransomware attacks around the world, together with the recent lists of exposed Pulse Secure VPN credentials set the backdrop for KELA’s latest research. While not all ransomware attacks used CVE-2019-11510 (a vulnerability of unpatched Pulse Secure VPN servers) or the previously shared credentials to the compromised corporate networks, it does add another layer…
Ca: OC Transpo notifying My Alerts subscribers of data breach
Mike Vlasveld reports: The City of Ottawa is urging all subscribers who use the same password for multiple accounts to change their passwords. The City of Ottawa is investigating a cyber security incident related to its OC Transpo My Alerts system. It says OC Transpo My Alerts subscribers may have had their email addresses and…
Flight Centre hackathon behind 2017 breach, exposed 6918 customers’ data
Ry Crozier reports: A 2017 data breach at Flight Centre occurred when passport and credit card numbers for 6918 customers were accidentally left in a dataset used by the participants of a hackathon. Details of the breach are revealed in a determination by the Australian Information Commissioner and Privacy Commissioner Angelene Falk that Flight Centre breached Australian…
MD: Ransomware impacted Greater Baltimore Medical Center’s information technology systems
Theo Hayes reports: Computer systems were down Sunday at the Greater Baltimore Medical Center due to ransomware, 11 News has learned. GBMC released a statement, saying: “On the morning of Sunday, Dec. 6, 2020, GBMC HealthCare detected a ransomware incident that impacted information technology systems. Although many of our systems are down, GBMC HealthCare has…
Ca: SSQ and La Capitale sites paralyzed
Nora T. Lamontagne reports (translation): The computer failure which paralyzes the online services of SSQ Insurance and La Capitale Insurance since Friday morning is linked to a cyber attack, according to specialists. “We know from a good source that there are attacks in progress,” said Saturday evening Patrick Mathieu, co-founder of Hackfest, a festival of…
FR: The publisher Dedalus victim of a cyber attack
TIC Sante reports (translation): The publisher specializing in hospital IT Dedalus suffered a computer attack on December 2 at its Mérignac site, TICsanté learned on December 3. “All of our systems were shut down immediately and we isolated this site and cut off all network and internet access. We notified our customers this morning [Thursday,…