Bill Toulas reports: Hackers use a massive network of fake and compromised Facebook accounts to send out millions of Messenger phishing messages to target Facebook business accounts with password-stealing malware. The attackers trick the targets into downloading a RAR/ZIP archive containing a downloader for an evasive Python-based stealer that grabs cookies and passwords stored in…
U.K. ICO prosecution: Rachel Anderton
From the U.K.’s Information Commissioner’s Office: A former family intervention officer at St Helens Borough Council has been sentenced for unlawfully accessing social services records. Rachel Anderton was prosecuted for viewing records on the council’s case management system between 17 January 2019 and 17 October 2019 without having a business need to do so. An…
MI: Cybercrime investigation causes half-day for East Jackson schools
Mitchell Kukulka reports: A potential cybercrime is causing classes to be cut to a half day in East Jackson Community Schools on Tuesday, Sept. 12, officials said. The incident currently is under investigation by the Blackman-Leoni Department of Public Safety. School officials learned of the potential cybercrime Tuesday morning, Superintendent Steve Doerr said. Read more…
Save the Children confirms systems breach
Claudia Glover reports: Save the Children appears to have been hacked by the Chinese data extortion gang BianLian, according to data posted to the latter’s victim blog. Though it does not mention the charity by name, the cybercrime organisation claims to have stolen up to 8GB of files from an international NGO “employing over 25,000…
St. Paul Public Schools notifies families of data breach from February
KSTP reports: St. Paul Public Schools notified families and staff last week of a “data security incident” last winter that may have exposed students’ names and email addresses. In a letter sent out on Friday, the district said it became aware of the issue in February and flagged the FBI, Minnesota IT Services and the…
Hospital Sisters Health System’s CFO exits as it continues to handle ‘cybersecurity incident’
On August 29, DataBreaches reported that Hospital Sisters Health System (HSHS) and Prevea Health appeared to have been the victims of a ransomware attack. As of today, the notice on Prevea Health states, “HSHS and Prevea are experiencing a systemwide outage of clinical and administrative applications.” Prevea continues to describe it as a temporary outage….