More than two years after he was extradited from the Czech Republic where he was arrested in 2016 for hacking LinkedIn, Dropbox, and Formspring, Russian national Yevgeniy Nikulin was sentenced today to 88 months by Judge William Alsup in federal court in northern California. Nikulin, also known as “Chinabig01,” “dex.007, ” “valeriy.krutov3, and “itBlackHat,” had…
Security lapse exposes hundreds of addresses of Minnesotans infected with COVID-19
Jay Kolls reports: In April, Gov. Tim Walz signed an executive order allowing the Minnesota Department of Health and the Minnesota Department of Public Safety to share addresses of COVID-19 patients with first responders across Minnesota. The governor imposed strict guidelines for sharing those addresses to protect the identity of Minnesotans with COVID-19. MDH and…
Arthur J. Gallagher targeted in ransomware attack
Matt Sheehan reports: International insurance brokerage firm Arthur J. Gallagher & Co has confirmed that it was the target of a ransomware attack on September 26th. The firm said the incident impacted a “limited portion” of its internal systems, and does not expect it to have a material impact on its operations or financial condition….
Two major flight tracking services hit by crippling cyberattacks
Waqas reports: Two of the most popular flight tracking websites, Flightradar24 and PlaneFinder had their service disrupted after consecutively suffering multiple cyberattacks. It seems like a well-organized hacking campaign targeting real-time flight tracking service providers. Flightradar24 was attacked thrice in two days, whereas PlaneFinder was attacked multiple times. Read more on HackRead. h/t, @Ch1mung0
Swatch shuts down some technology systems after cyberattack
Brenna Hughes Neghaiwi reports: Swatch Group UHR.S shut down some of its technology systems after detecting a cyberattack over the weekend, the world’s biggest watchmaker said on Tuesday. “Swatch Group confirms that it has identified clear signs of a developing cyber-attack on some of its IT systems during the weekend,” the company said in an emailed…
Inspector General’s Report Confirms CBP Contractor Was Hacked, Resulting In Sensitive Info Making Its Way To The Dark Web
Tim Cushing reports an update on a 2019 breach previously noted on this site; Last year, a CBP vendor suffered a data breach affecting more than 100,000 people who had crossed the border at checkpoints. The CBP refused to name the contractor involved in the breach, but internal documents indicated it was Perceptics. Perceptics provided and maintained the…