Apart from an increase in hacks as more people work from home with less than high levels of security, there has been an increase in insider breaches. Emma Hatton reports: Recently-redundant employees are sharing their former companies’ data in an effort to find new work with their competitors, a security firm that investigates data breaches…
Thanos ransomware auto-spreads to Windows devices, evades security
Lawrence Abrams reports that what is now known as Thanos ransomware has features that make it cause for serious concern. In a new report by Recorded Future, we learn that this ransomware is named Thanos and is being promoted as a Ransomware-as-a-Service on Russian-speaking hacker forums since February. Being promoted by a threat actor named Nosophorus, Thanos…
AU: Activewear retailer hacked, data now on the dark web
RagTrader reports: Activewear retailer In Sport had its head office server and computers ransomwared in May, as cyber crime during COVID-19 escalates. In a letter to customers, it revealed the attack was detected on May 16 but it was unknown what files hackers accessed. Read more on RagTrader. Update: This appears to be an attack by…
BST sued by Community Care customers over Maze ransomware attack
Larry Rulison reports: Lawyers for patients of Community Care Physicians that were victimized by a cyber ransomware attack last December are suing the accounting firm that the medical practice hired to protect its customer data, some of which was published online. The class-action lawsuit was filed in state Supreme Court in Albany last month against …
FTC Reaches Settlement with Kohl’s over Allegations it Failed to Provide Victims with Information Related to Identity Theft
From the FTC, this press release: Kohl’s Department Stores, Inc. has agreed to pay a civil penalty of $220,000 to settle Federal Trade Commission allegations that the Wisconsin-based retailer violated the Fair Credit Reporting Act (FCRA) by refusing to provide complete records of transactions to consumers whose personal information was used by identity thieves. In…
Researcher claims Pakistan Government’s #Covid19 tracing app leaks user’s private data
French security researcher Baptiste Robert continues to educate the public about security concerns with COVID19 tracking and tracing apps. Based on his analysis that he tweeted, TheDigitalHacker has been reported that the app made by developers of the Pakistan government to track #covid19 uses a 3rd-grade security system that can leak personal data like passwords,…