Paul Ducklin reports: Here’s one for the books: ransomware that’s disguised as a free anti-ransomware decryption tool. The sample we looked at claims to be a decryptor for the DJVU ransomware, which gets its name from the .djvu extension it appends to files that it’s just scrambled. Read more on NakedSecurity.
Columbia College Chicago should have shared data breach information sooner, experts say
Kendall Polidori and Mari Devereaux report: Eight days after the school fell victim to an attack by NetWalker, a group of data hackers, Columbia officials sent a collegewide email stating the college is “working diligently around the clock with outside professionals and law enforcement to protect its student community and employees.” The email said individuals…
FBI Warns Of Increasing Use of Trojans in Banking Apps
Akshaya Asokan reports: The FBI is warning that cybercriminals and fraudsters are increasingly targeting mobile banking apps with malware in order to steal credentials and conduct account takeover attacks. In a public alert published Wednesday, the FBI’s Internet Crime Complaint Center warns that fraudsters have increasingly used malicious apps as the COVID-19 pandemic has driven an increasing number of…
Knoxville ransomware attack shutters parts of city website
Teri Robinson reports: A ransomware attack took out parts of the Knoxville city website but did not compromise personal or financial information. The Tennessee city’s public safety operations were spared, Knoxnews cited Chief Operations Officer David Brace, deputy to the mayor, as saying. Brace said the fire department discovered the attack but didn’t disclose the amount or…
University of Missouri Health Care discloses 2019 breach
University of Missouri Health Care (MU Health Care) has today disclosed a breach that occurred in September 2019. According to a notification on their site, on September 21, 2019, they became aware that the email accounts of some students who had been seen by their health care system had been accessed without authorization. Those email…
UK: Flaw in property inventory website exposed thousands of users’ home contents
James Walker reports on an incident, which while unfortunate, provides us with an example of prompt incident response and thanking the researcher instead of shooting the messenger: A vulnerability in the website of Inventory Hive, a property inventory service, was leaking members’ personal information, including their name and address, along with internal and external property…