Jim Wilson writes: One of India’s most popular travel booking hubs was left exposed without adequate security measures, and subsequently, suffered a significant data breach that exposed all production server information and led to the loss of over 43GB of data. The affected Elastic search server was left publicly exposed without password protection or encryption…
NC: Hackers want money to release Haywood County school district files
Rex Hodge reports: There will be no remote learning in Haywood County schools for a second day. A Ransomware attack against the district’s computers shut schools down Monday. They’ll be shut down again Tuesday. Read more on WMYA. It sounds like they have no intention of paying any ransom and that they do have some…
38 Japan firms’ authentication data stolen amid surge in teleworkers
Kyodo News reports: Sumitomo Forestry Co., Hitachi Chemical Co. and 36 other Japanese companies had authentication information to access their virtual private networks stolen and leaked by hackers this summer, an information security expert said Tuesday. VPN usage has increased as companies encourage employees to work from home due to the novel coronavirus pandemic. The…
CO: City of Lafayette statement on July ransomware attack
On August 6, media in Colorado reported that the City of Lafayette had paid $45,000 to get a decryption key following a ransomware attack. On August 24, the city published a notification about the incident: This public notice is intended to advise residents, employees, and customers of an incident involving a cyberattack on the City…
Ca: Brookfield Residential confirms ransomware attack
As DataBreaches.net reported earlier today, although DarkSide ransomware operators claimed to have attacked Brookfield Asset Management, they appear to have attacked Brookfield Residential, a North American land developer and residential home builder. Brookfield Residential is an independently operating portfolio company that runs on an isolated network and domain from all other Brookfield entities, including Brookfield…
More Canadian entities hit with ransomware
Updated August 24: The #DarkSide’s victim is Brookfield Residential. Brookfield Residential describes themselves as a North American land developer and new home builder, and the “flagship North American residential property company of Brookfield Asset Management.” On their leak site, the threat actors had linked to Brookfield.com, which is Brookfield Asset Management, but the documents dumped…