21 January 2024 [UPDATED: 10:45 CET, January 21] One of Tietoevry’s several datacenters in Sweden was partially subject to a ransomware attack during the night of Jan 19-20. While overall recovery has progressed, services for the customers in scope remain impacted. The attack was limited to one part of one of our Swedish datacenters, impacting…
UK: Coventry school reprimanded for data breach after IT system ‘hacked three times’
Claire Harrison reports: A Coventry school has been reprimanded for data breaches after its IT system was ‘hacked three times’. In doing so, the Information Commissioners Office has said that Finham Park Multi Academy Trust did not have adequate account lockout or password policies in place.. The ICO said, in a report, that an unauthorised third party…
Microsoft says Russian government hackers stole email from its leaders
Joseph Menn reports: Microsoft said hackers working for the Russian government broke into its corporate networks two months ago and stole email from executives and some employees in its cybersecurity and legal departments. Microsoft said in a late Friday blog post that it had detected the November breach on Jan. 12 and was beginning to notify staffers…
Owner of BreachedForums sentenced to time served plus 20 years supervised release with special conditions
Just days after prosecutors in the Eastern District of Virginia recommended that Conor Fitzpatrick, aka “Pompompurin,” be sentenced to at least 15 years in prison, District Judge Leonie M. Brinkema sentenced him to time served and supervised release. As DataBreaches previously reported, Fitzpatrick, the owner of the first BreachedForums site, pleaded guilty in July to…
Primary Health & Wellness Center, LLC’s public notice of ransomware incident
In the process of researching breach reports submitted to HHS, DataBreaches came across a public notice for an incident affecting Primary Health & Wellness Center, LLC in Maryland. The covered entity is to be commended for the details and transparency in their notice, although they do not name the threat actor/group involved or any details…
Raptor Technologies’ unsecured blob exposure was worse than they acknowledged. Here’s what we know — and don’t know — so far.
On January 11, DataBreaches noted a concerning blob exposure discovered by Jerome Fowler and first reported by vpnMentor. As WIRED’s Matt Burgess reported: Last month, security researcher Jeremiah Fowler discovered 800 gigabytes of files and logs linked to school software provider Raptor Technologies. The firm provides software that allows schools to track student attendance, monitor…