Lawrence Abrams reports: Asian media firm E27 has been hacked, and attackers ask for a small “donation” to provide information on the vulnerabilities used in the attack. E27 is a media company that offers Asian technology startup news and a community where members can communicate and learn from each other. Read more on BleepingComputer.
PH: Unauthorized disclosure of COVID-19 patients’ identities continues
Nikko Dizon reports: As the number of coronavirus cases in the Philippines steadily increased from mid-March to late May, the National Privacy Commission (NPC) had been investigating 22 complaints of privacy breaches involving more than 150 COVID-19 patients, as well as suspected and probable cases. In at least 7 of these cases, the breach was committed…
US police using Chinese drones are ‘at risk’ of data breach, DHS warns
Steven Nelson reports: The Department of Homeland Security is warning US police that surveillance drones made by Chinese company DJI are “at risk” of having their data intercepted, The Post has learned. The department’s Cybersecurity and Infrastructure Security Agency expressed its concern in a letter this week to House Judiciary Committee Chairman Jerry Nadler (D-NY)….
Russian National Pleads Guilty for Role in Transnational Cybercrime Organization Responsible for more than $568 Million in Losses
One of the leaders of the Infraud Organization pleaded guilty today to RICO conspiracy. Infraud was an Internet-based cybercriminal enterprise engaged in the large-scale acquisition, sale, and dissemination of stolen identities, compromised debit and credit cards, personally identifiable information, financial and banking information, computer malware, and other contraband. Assistant Attorney General Brian A. Benczkowski of…
UCSF admits it paid NetWalker more than $1 million ransom
On June 4, this site noted that NetWalker ransomware operators had added the University of California at San Francisco (UCSF) to their website where they name victims who have not paid their ransom demands. I did not expect the university to pay, commenting, at the time, “I wonder if the threat actors know how many…
8 U.S. City Websites Targeted in Magecart Attacks
Lindsey O’Donnell reports: Researchers believe that Click2Gov, municipal payment software, may be at the heart of this most recent government security incident Researchers are warning that the websites of eight U.S. cities – across three states – have been compromised with payment card-stealing Magecart skimmers. The websites all utilize Click2Gov municipality payment software, which was previously…