September 12, 2023 TLP:CLEAR Report: 202309121400 Akira Ransomware Executive Summary Akira is a Ransomware-as-a-Service (RaaS) group that started operations in March 2023. Since its discovery, the group has claimed over 60 victims, which have typically ranged in the small- to medium-size business scale. Akira has garnered attention for a couple of reasons, such as their…
Caesars Entertainment paid millions to hackers in attacks
Caesars Entertainment Inc. paid tens of millions of dollars to hackers who broke into the company’s systems in recent weeks and threatened to release the company’s data, according to two people familiar with the matter. Caesars is expected to disclose the cyberattack in a regulatory filing soon, the people said. The revelation of the alleged…
Chambersburg Area School District answers some questions about ransomware attack, won’t say if they paid hackers
A statement and FAQ by the Chambersburg Area School District, as shared by TriState Alert, appears below.The district offers its reasons (translation: excuses) for not answering the questions parents and the public really want to know: did the district pay ransom, and was personal information acquired by the attackers? Although the district did not name…
MGM Resorts incident: social engineering strikes again?
If the claims of someone in an AlphV (BlackCat) subgroup known for social engineering skills are true — and vx-underground believes their source is credible, then …. words fail: All ALPHV ransomware group did to compromise MGM Resorts was hop on LinkedIn, find an employee, then call the Help Desk. A company valued at $33,900,000,000…
PA: Butler County Experienced Security Breach With Jail Employee Email
Tyler Friel reports: A cyber event last month may have affected the security of some information maintained by Butler County. County officials say they found out August 8th that an email account related to the County jail was sending unauthorized spam emails. Read more at Butler Radio.
Disclose data breaches to us proactively, and we’ll lower any fines — ICO
Emma Woollacott reports: British businesses could face lower fines if they proactively report data breaches, thanks to an agreement between the UK’s data protection regulator and cybersecurity agency. The Information Commissioner’s Office (ICO) and National Cyber Security Centre (NCSC) say they plan to encourage engagement with the NCSC in the event of a breach, and allow meaningful…