Sergiu Gatlan reports: Taiwanese networking equipment manufacturer D-Link confirmed a data breach linked to information stolen from its network and put up for sale on BreachForums earlier this month. The attacker claims to have stolen source code for D-Link’s D-View network management software, along with millions of entries containing personal information of customers and employees, including…
NV: Personal information accessed in Clark County School District cybersecurity incident (1)
C.C. McCandless reports: The Clark County School District announced that a recent cybersecurity incident allowed an “unauthorized party” to access personal information of some students, parents and employees. The district said it became aware of the hack on Oct. 5, adding that it involved the email environment. “Upon discovering the incident, CCSD immediately engaged a…
Kansas courts to operate on paper for at least 2 weeks due to “unauthorized incursion” into system (1)
Cameron Burnett reports: Court systems throughout Kansas, including Sedgwick County, will likely be operating on paper for the next two weeks, at the minimum. Kansas Judge Phil Journey says it looks like there has been an “unauthorized incursion” into the brand-new statewide computer system and it will be down for at least two weeks, affecting all…
CISA shares vulnerabilities, misconfigs used by ransomware gangs
Sergiu Gatlan reports: The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has unveiled additional details regarding misconfigurations and security vulnerabilities exploited by ransomware gangs, aiming to help critical infrastructure organizations thwart their attacks. CISA released this information as part of its Ransomware Vulnerability Warning Pilot (RVWP) program, established in January of this year, when it announced that…
Colonial Pipeline was hacked. No, wait, Accenture was hacked. No, wait….. untangling claims. (2)
By, now, there’s been a lot of buzz by some claims made by RansomedVC on their leak site and on their Telegram channel. In their post this afternoon, RansomedVC claimed that (1) Rob Lee of Dragos somehow cheated someone called “fooble,” and as a result, (2) RansomedVC was going to leak files that Lee had…
Cook County Health and Hospitals System terminates relationship with medical transcription service, notifying patients of breach
On September 24, Cook County Health and Hospitals System (CCH) in Illinois notified HHS of a breach. At the time, CCH reported that 500 patients were affected. The “500” entry is usually just a marker to indicate that the entity knows that they were required to notify HHS and individuals no later than 60 days…