The Defense Post reports: Colombia has reported a massive cyberattack affecting dozens of government websites and impacting countries across Latin America. Local media said Thursday that key websites — such as the justice, health, and culture ministries as well as several hospitals — had been affected by a ransomware attack. The presidency said in a…
Caesars Entertainment confirms ransom payment, customer data theft
Sergiu Gatlan reports: Caesars Entertainment, self-described as the largest U.S. casino chain with the most extensive loyalty program in the industry, says it paid a ransom to avoid the online leak of customer data stolen in a recent cyberattack. Caesars discovered on September 7th that the attackers stole its loyalty program database, which stores driver’s…
Personal information of thousands of Sanford Health patients potentially compromised
Gretchen Hjelmstad reports: The imaging vendor Sanford Health uses for its mobile heart screen trucks, DMS Health Technologies, experienced a data security incident between March 27 and April 24, 2023. According to Sanford Health, patient information was potentially compromised including name, date of birth, date of service, physician name and exam type. Sanford Health is…
AlphV responds to MGM incident and sloppy reporting
AlphV has posted a statement about their attack on MGM Resorts. They also post some scathing criticisms of journalists and news outlets for reporting inaccurately and not verifying sources. Of note, their statement also asserts, “The ALPHV ransomware group has not before privately or publicly claimed responsibility for an attack before this point. Rumors were…
FL: Hillsborough County Public Schools cyberattack claimed by LockBit3.0
LockBit has added Hillsborough County Public Schools in Florida to their leak site today. They claim to have acquired 2 TB of data, and provide a file list and some sample files. The sample files are routine types of district files. One did contain personal and medically related information on students. The file list suggests…
Identity of NSA hacker behind cyberattack on China’s leading aviation university identified; to be disclosed in due course: source
Yuan Hong reports: During the investigation of the cyberattack against Northwestern Polytechnical University (NPU), a leading Chinese aviation university, China has successfully extracted multiple samples of the spyware named SecondDate, and with the collaborative efforts of partners in various countries, the real identity of the US’ National Security Agency (NSA) personnel responsible for launching the…