Bill Toulas reports: A threat actor announced on a cybercrime forum that they sold the source code and a cracked version of the Zeppelin ransomware builder for just $500. The post was spotted by threat intelligence company KELA and while the legitimacy of the offer has not been validated, the screenshots from the seller indicate that the package…
Area city’s cyber attack: Functions restored, $350,000 spent, personal data issue in limbo
Aimee Hancock reports: The city of Huber Heights remains under a state of emergency as officials work to finalize recovery operations nearly two months after a cyberattack took down multiple government systems and functions. According to City Manager Rick Dzik, all city services are functional, though “additional infrastructure work” is still underway. […] “Payments were…
Merck Settles Coverage Dispute With Insurers Over War Exclusion in NotPetya Attack
Insurance Journal reports: Merck & Co. Inc. has reportedly reached a deal with insurers over a closely-watched coverage dispute related to a massive cyberattack in 2017. The New Jersey Supreme Court in July 2023 agreed to hear the case after a state appeals court ruled months prior against eight insurers, finding that a hostile/warlike action exclusion in…
23andMe Says Breach Victims Are to Blame, Legal Action is Futile
As incident response and public relations go, blaming victims for your breach is generally not an impressive strategy. Michael Edgar reports that 23andMe seems to be doing exactly that: Months after the San Francisco based company experienced a data breach impacting about 6.9 million users, 23andMe is now facing criticism for blaming victims of the breach and…
Republican Representatives Demand Accountability in Wake of DC Elections Voter Data Breach
Ishita Tripathi reports: The DCBOE is under intense scrutiny regarding the October 2023 DC Election data breach. The two House Republicans, Representatives Bryan Steil (R-Wis.) and Laurel Lee (R-Fla.), have written a resolute letter demanding answers following the DC Election data breach. Unveiled just last week, the breach, which unfolded in October, exposed the personal information of some…
UnitedHealth alleges trade secret theft by ex-execs
Nona Tepper reports: Two former UnitedHealth Group executives allegedly took trade secrets with them on the way out the door and used the information to found a pair of diabetes management startups, the conglomerate claims in a federal lawsuit. UnitedHealth Group filed suit against Ken Ehlert, Mark Pollmann and other leaders of Lore Health and…