Paul Bischoff reports: Telmate, a service used by incarcerated inmates at US prisons to communicate with their friends and loved ones, has exposed a database containing tens of millions of call logs, private messages, and personal information about inmates and their contacts. The database was exposed on the web without a password or any other…
CNN-News18 allegedly hacked to deny PayTM hack claims
What a weird story about the lengths some folks will go to to deny that they were responsible for a hack. Ax Sharma reports: A hacker group that goes by the names “John Wick” and “Korean Hackers” have provided BleepingComputer with information on the hacking of the Indian Prime Minister’s Twitter account and the online systems of popular Indian news…
Russian National Indicted for Conspiracy to Introduce Malware into a Computer Network
One of the big stories this week concerned a failed attempt to bribe a Tesla employee to inject malware into Tesla’s system. The attempt failed because the employee reported what was going on. From the U.S. Department of Justice: A federal grand jury in the District of Nevada returned an indictment today charging a Russian…
FBI issues second alert about ProLock ransomware stealing data
Sergiu Gatlan reports: The FBI issued a second warning this week to alert US companies of ProLock ransomware operators stealing data from compromised networks before encrypting their victims’ systems. The 20200901-001 Private Industry Notification seen by BleepingComputer on September 1st comes after the MI-000125-MW Flash Alert on the same subject issued by the FBI four months ago, on…
Ransomware Attacks During COVID-19
Michael Buchanan and Andrew Willinger of Patterson Belknap have a post about ransomware attacks on entities involved in COVID-19 research or work on vaccines for it. In their piece, they point to a number of attacks that have been previously covered on this blog, starting with the Maze team attack on Hammersmith Medicines Research in…
Update to Haywood County Schools ransomware attack
There’s an update to the Haywood County Schools ransomware attack previously noted on this site. Lawrence Abrams reports that it was SunCrypt ransomware that was used in the attack, and although the district resumed remote learning on August 31, some school services remain impacted. As part of the double extortion and leak site model that…