Ransomware operators known as the Maze team have been getting media attention for their influence in implementing what is being called a double extortion scheme: attackers gain access to their victim’s network, exfiltrate data, and then lock up the victim’s system with ransomware. They then demand a fee — which may be hundreds of thousands…
Elizabethtown Community Hospital Patients Lack Standing in Data Breach Row
Daniel R. Stoller has a litigation update on a case that stems from a 2018 breach affecting patients at Elizabethtown Community Hospital. Elizabethtown Community Hospital beat claims of inadequate data security protections after a federal judge in New York found that plaintiffs lacked standing. Read more on Bloomberg Law (subscription required).
(Update1) The Palm Beach County School District suffers massive pwd breach after second grader hacks them
See an important update after the original post. From the no-one-could-have-possibly-foreseen-kids-figuring-out-default-password-conventions dept., Andrew Colton reports: The Palm Beach County School District is in the midst of a massive computer security crisis that draws into question the authenticity of every assignment completed by every student since “distance learning” began, after BocaNewsNow.com learned that an elementary school student…
ShinyHunters has companies scrambling: Star Tribune warns subscribers of claimed hack, Tokopedia brings in independent consultant to investigate hack
WCCO reports: On Monday, Star Tribune subscribers were notified of a possible security breach in its website log-in database. The paper says it only stored usernames and passwords there. Read more on CBS Minnesota. This is in response to claims by ShinyHunters, who have listed what they claim is data from 1 million subscribers for…
Criminal forum trading stolen data suffers ironic data breach
John E. Dunn reports: Someone on the dark web is touting for sale an unusual database a lot of people might pay handsomely to get their hands on. Another rich cache full of sensitive company data, or perhaps something stolen from a military power? In fact, according to the security company that verified its authenticity, Cyble,…
Oil and gas hackers chase bigger pandemic paydays
Christian Vasquez reports: Hackers have leaked hundreds of computer files allegedly stolen from a Houston-based oil and natural gas producer — the latest in a series of ransomware attacks that put a new twist on an old extortion playbook. The hackers behind the “Nefilim” malware say they have stolen over 800 gigabytes of personnel and…