Oregon State University announced Thursday that personal information of some students and faculty may have been exposed during a recent IT security incident. A cybercriminal accessed an OSU Ecampus server that contained student and faculty directory information such as email addresses, phone numbers and mailing addresses. No social security numbers were compromised in the incident….
Jewish Federation of Greater Washington reports $7.5 million hack
Well, we all expected more breaches because of more people working remotely. Here’s a sad reminder, reported by Emily Davies: The Jewish Federation of Greater Washington reported a hack that drained $7.5 million from its endowment fund and funneled the money into international accounts. CEO Gil Preuss announced the hack to employees in a virtual call…
Ca: Ministry of Justice victim of cyberattack that resulted in members of the public receiving emails with emotet
The following is a Google translation of a recent news story by Hugo Joncas: Hackers have managed to infiltrate the Justice Department’s system, and even send malware to citizens who traded with these addresses. The ministry was careful not to warn the public about the attack, but after many questions from our Bureau of Investigation,…
MA: Somerset Berkley Regional High School a victim of ransomware attack
Herald News Staff reports: Somerset Berkley Regional High School was a victim of a ransom-ware attack, according to a letter sent to parents by Superintendent Jeffrey Schoonover. Oh July 17, some high school computer systems were encrypted, which means they could no longer operate. Read more on Taunton Daily Gazette. h/t, @VERISDB
DLL Fixer leads to Cyrat Ransomware
Karsten Hahn writes about a new ransomware, Cyrat: While hunting for new malware we often use Yara rules to find suspicious samples. One of my generic ransomware hunt rules found this new ransomware sample. At the time it had only 2 detections on Virustotal. The first submission date is 25. August 2020. […] The malware…
AusCERT says alleged DoE hack came from a third-party
Catalin Cimpanu reports: The Australian Computer Emergency Response Team (AusCERT) denied claims today that hackers had breached the Department of Education, Skills, and Employment (DoE), and downloaded the personal details of more than one million students, teachers, and staff. Rumors of a supposed hack first surfaced yesterday after a hacker shared an archive file on…