On May 22, INC ransomware added First Nations Health Authority to its leak site with screenshots as proof of claims. On the same day, First Nations Health Authority (FNHA) disclosed it is currently investigating a cybersecurity incident that it first detected on May 13. “We took immediate action to investigate this activity and intercepted an unauthorized…
Spyware found on US hotel check-in computers
Zack Whittaker reports: A consumer-grade spyware app has been found running on the check-in systems of at least three Wyndham hotels across the United States, TechCrunch has learned. The app, called pcTattletale, stealthily and continually captured screenshots of the hotel booking systems, which contained guest details and customer information. Thanks to a security flaw in…
Police Service of Northern Ireland facing £750k fine following data breach that exposed personal information of more than 9,000 staff
Suzanne McGonagle reports: The PSNI is facing a £750,000 fine following the spreadsheet error that exposed the personal information of its entire workforce. The Information Commissioner’s Office (ICO) said the fine comes after information relating to more than 9,000 serving PSNI officers and staff was published online in August last year. An investigation by the…
Did BreachForums get its domain back because NiceNIC was originally nicer to them than to law enforcement? (UPDATE1)
When the FBI and its law enforcement collaborators seized BreachForums on May 15, a splash screen announced the seizure. But by the next morning, BreachForums seemed to have regained control of their domain. How that happened has yet to be explained by law enforcement. On May 20, DataBreaches reported that a Swiss prosecutor had provided CloudFlare…
SEC Charges Intercontinental Exchange and Nine Affiliates Including the New York Stock Exchange with Failing to Inform the Commission of a Cyber Intrusion
Washington D.C., May 22, 2024 — The Securities and Exchange Commission today announced that The Intercontinental Exchange, Inc. (ICE) agreed to pay a $10 million penalty to settle charges that it caused the failure of nine wholly-owned subsidiaries, including the New York Stock Exchange, to timely inform the SEC of a cyber intrusion as required…
An Israeli City Hid a Crippling Cyberattack From the Public. It Was Just the Beginning
Omer Benjakob, Aaron Rabinowitz, and Ran Shimoni report: One Friday morning in January, office telephones in the city hall of Modi’in Ilit fell silent. Employees who were in the building quickly realized that something unusual was happening. They were locked out of their computers, unable to access files and emails. The reason only became clear…