Fahmida Y. Rashid writes: Investigating and recovering from security incidents are extremely stressful and time-consuming. Talking about what happened poses a different set of challenges, and many organizations struggle with effective communication. Organizations are increasingly developing incident response playbooks to plan out in advance what steps to take in case of a security breach—such as…
The Cyber-Avengers Protecting Hospitals From Ransomware
Sonner Kehrt has an article on CTI that begins: It was early February when Ohad Zaidenberg first started noticing malicious emails and files disguised as information about Covid. He’s a cyber intelligence researcher based in Israel, and they were the sort of schemes he encountered all the time—benign-looking messages that trick people into giving someone network…
UK investigates cyberattack leaking Syria propaganda operations
The Middle East Monitor (MEMO) reports: The British government is probing a hack carried out on computer systems belonging to the British Foreign Ministry, which resulted in hundreds of files exposing its propaganda operations in Syria being stolen. In the massive security breach reported by the UK-based news outlet Middle East Eye, hackers sought out files…
Investor losses legal battle against Bithumb for 2017 data breach incident
Felipe Erazo reports a follow-up on one of Bithumb’s breaches. Previous coverage of their breaches can be found on DataBreaches.net, linked from here. This particular update concerns events in 2017, which led to a government investigation and then fines, apart from the civil suit involved in this report. There was also an indictment of Bithumb…
No, Netwalker didn’t attack Chubb Insurance — or Chubb Fire and Security
Update and Correction: Last night, DataBreaches.net reported that Netwalker threat actors claimed to have attacked Chubb Fire and Security. My reporting created more confusion than clarity, so I am removing the post altogether. Let me try to be clearer: Chubb Insurance has nothing to do with the current claims by Netwalker threat actors. Netwalker claims…
Ransomware Threat Actors Dump Data on Clark County School District Employees and Students
Tawnell D. Hobbs reports: A hacker published documents containing Social Security numbers, student grades and other private information stolen from a large public-school district in Las Vegas after officials refused a ransom demanded in return for unlocking district computer servers. The illegal release late last week of sensitive information from the Clark County School District…