There’s a small update in the proceedings involving Nathan Wyatt, aka “Crafty Cockney,” the U.K. national who has been charged in the Eastern District of Missouri for his alleged role in hacks and extortion attempts by thedarkoverlord (TDO). Wyatt had been charged in a sealed indictment back in 2017, and was arrested in the U.K….
(Updated): DoppelPaymer ransomware attackers claim to have attacked Torrance, California
The DoppleLeaks site where DoppelPaymer ransomware attackers list victims who have not paid their ransom demands was updated this afternoon to includeTorrance, California as a victim. There is nothing on Torrance’s web site about any attack and the city’s social media team did not reply immediately to an inquiry from DataBreaches.net has asking them if…
Security researcher discloses four IBM zero-days after company refused to patch
Catalin Cimpanu reports: A security researcher has published today details about four zero-day vulnerabilities impacting an IBM security product after the company refused to patch bugs following a private bug disclosure attempt. The bugs impact the IBM Data Risk Manager (IDRM), an enterprise security tool that aggregates feeds from vulnerability scanning tools and other risk management…
Supreme Court to Consider Whether Improper Data Access Violates Computer Crime Law
From EPIC.org: The Supreme Court will decide whether a person who is authorized to access data for some purposes violates the Computer Fraud and Abuse Act if they access the information for other purposes. The case, Van Buren v. United States, concerns a police officer who accessed a law enforcement database to sell the information to…
Southern Ute Indian Tribe says U.S. Treasury Dept. leaked confidential information
The Durango Herald reports: The Southern Ute Indian Tribe is demanding an investigation into the U.S. Treasury Department after the tribe said the department leaked confidential tribal information given to it as part of an effort to obtain funds under the Coronavirus Aid, Relief and Economic Security Act. On Monday, all state, local and tribal…
UniCredit Hackers Try to Sell Employee Data on Cyber-Crime Forums
Daniele Lepido and Sonia Sirletti report: Data on about 3,000 UniCredit SpA employees was put up for sale on cyber-crime forums after a hacking attack. The data went on sale on April 19 and contained what the hacker said was information on UniCredit workers, including emails, phone numbers, encrypted passwords and names, Telsy, a unit…