Andrea Alberizia reports that CMC in Ravenna has been compromised by NetWalker ransomware. A team of 20 engineers from Itway has been working around the clock for four days to get the coop network fully restored. The company has no intention of paying the ransom demand. The amount of the demand was not reported, but…
New seller (?) offers 17 previously non-public databases for sale
Once again, entities that may not have known that they had been hacked may be discovering that their data are up for sale on a forum. On September 5, a new seller — or at least a new persona — appeared on a well-known forum. On October 28, the seller offered private databases for sale….
KR: Court orders online mall to compensate 2,400 customers for data leak
Depending on how long you have been following this blog, some of you may not remember the Interpark data breach in South Korea in 2016. I had covered it several times, including when it was fined $3.8 million (the largest fine up until that date) for its failure to protect consumer data from from what…
Eatigo reports data breach, personal data from customer accounts listed for sale online
CNA reports: Personal data from potentially 2.8 million eatigo accounts were illegally assessed in a data breach. In an email to customers on Saturday (Oct 31), the restaurant reservation platform said that along with other e-commerce sites, it was the subject of “a data security incident involving unauthorised access to our customer database”. Read more on CNA.
REvil ransomware threat actors reveal their gaming company victim
In a recent interview with Yelisey Boguslavskiy, “UNKN” of the threat actors known as REvil (Sodinokibi) indicated that they were planning a major attack on a gaming network. Today, the threat actors added GPI (Gaming Partners International) to their dedicated leak site. GPI describes itself as a leading provider of casino currency and table game…
“We take your privacy seriously,” Saturday edition
As part of my research collaboration with Protenus for their Breach Barometer reports, I spend time every week reaching out to entities to ask them for details about incidents if I cannot find any notice on their site or a state attorney general’s site. Most entities respond with the requested information or a copy of…