We know that there is an increase in scamming trying to capitalize on the COVID-19 pandemic. The FBI has issued an alert, the DOJ has taken enforcement action against one company already, and the FDA and FTC have warned companies. Here’s one scam specifically targeting military members who have Tricare health insurance. Howard Altman reports:…
Three More Ransomware Families Create Sites to Leak Stolen Data
Lawrence Abrams reports that three more ransomware families have adopted the model of using websites to leak victims’ data if they don’t pay extortion demands: Nefilim Ransomware has launched a site called “Corporate Leaks” CLOP Ransomware — the team behind the Maastricht University attack — has also released a leak site called “>_CL0P^_- LEAKS” and…
Never-before-seen attackers are targeting Mideast industrial organizations
Dan Goodin reports: Researchers have unearthed an attack campaign that uses previously unseen malware to target Middle Eastern organizations, some of which are in the industrial sector. Researchers with Kaspersky Lab, the security firm that discovered the campaign, have dubbed it WildPressure. Read more on Ars Technica.
FBI Takes Down a Russian-Based Hacker Platform; Arrests Suspected Russian Site Administrator
First they arrested the suspected administrator on March 7. Today, they shut down the platform. From DOJ: A Russian-based cyber platform known as DEER.IO was shut down by the FBI today, and its suspected administrator – alleged Russian hacker Kirill Victorovich Firsov – was arrested and charged with crimes related to the hacking of U.S….
An old HIPAA incident rears its very ugly head again
Like other journalists who cover data breaches in the healthcare space, I routinely check HHS’s public breach disclosure tool (sometimes called “The Wall of Shame”) to see what breaches have been reported to them and with what numbers. One of the recent entries was from a “Stephan C. Dean” who listed himself as a business…
Indian property site hack leads to 2 million users’ data exposed
Hindustan Times reports: Private data of more than 2 million users were shared on a hacking forum following a major security breach of the Indian property website PropTiger in 2018. According to a new Have I been pwned alert, the exposed data contains both user records and login histories with more than 2 million unique customer email…