CoinPedia reports: “Don’t do crime. CRIME IS BAD. xoxo from Prague.” That’s the message left behind after hackers gave LockBit – a ransomware gang known for extorting millions. Yes, they just got a brutal taste of their own medicine. In a surprising breach, nearly 60,000 Bitcoin wallet addresses tied to LockBit’s operations were leaked online….
UK: Legal Aid Agency hit by cyber security incident
Henry Vaughan reports: The Ministry of Justice (MoJ) said it is working with the National Crime Agency and National Cyber Security Centre to investigate the data breach. In a letter sent to law firms last week, which has been seen by Sky News, the Legal Aid Agency (LAA) warned it had identified a “security incident”. The organisation,…
Public notice for individuals affected by an information security breach in the Social Services, Health Care and Rescue Services Division of Helsinki
An internal information security breach has been identified in the Social Services, Health Care and Rescue Services Division of the City of Helsinki. The breach concerns client data from certain Family Law Services, which between 2012 and 2019 was stored on the Division’s internal network without adequate access restrictions. No external parties have had access…
PowerSchool paid a hacker’s extortion demand, but now school district clients are being extorted anyway (3)
Here’s today’s reminder not to waste your money paying criminals to delete data. After PowerSchool became aware of a hack in December 2024, they paid the then-unnamed attacker(s) to delete data. They subsequently informed their affected clients that they had observed the data deletion and believed that the data had been deleted, and that there…
Defending Against UNC3944: Cybercrime Hardening Guidance from the Frontlines
From Mandiant: UNC3944, which overlaps with public reporting on Scattered Spider, is a financially-motivated threat actor characterized by its persistent use of social engineering and brazen communications with victims. In early operations, UNC3944 largely targeted telecommunications-related organizations to support SIM swap operations. However, after shifting to ransomware and data theft extortion in early 2023, they…
Call for Public Input: Essential Cybersecurity Protections for K-12 Schools (2025-26 SY)
As posted at K12 SIX: The K12 SIX Technical Working Group is pleased to open a call for public input into the fourth annual update and revision to the K12 SIX Essential Cybersecurity Protections Series. The goal of the K12 SIX Essential Cybersecurity Protections is to communicate the most important defenses that K-12 school systems…