Mahira Dayal reports: A data breach at Proskauer Rose exposed client data, including sensitive legal and financial information, the law firm confirmed Friday. “Our tech security team recently learned that an outside vendor that we retained to create an information portal on a third-party cloud-based storage platform had not properly secured it,” Joanne Southern, a…
Aspire Public Schools reveals 2022 breach; Rochester Public Schools dealing with current attack
Notices of breaches involving two school breaches showed up today in DataBreaches’ searches: Aspire Public Schools in California submitted notifications to at least two state attorneys general. According to its notification, Aspire learned that an unauthorized party gained access to one Aspire email account at various times between February 2022 and August 2022. There was…
10 Australians arrested as part of international illegal marketplace takedown
This is a joint media release between the Australian Federal Police and New South Wales Police Force, Queensland Police Service and Victoria Police. Editor’s note: Vision from the arrests is available via Hightail A well-known criminal marketplace offering access to stolen account credentials and compromised device information has been shut down following an international investigation led…
A Visual Journey Through Computer Setups Revealed by Recent Cybercrime Raids
RealHackHistory writes: First an admission by me, I’m not a hardware nerd. I know my way around PCs, can swap out parts as needed and can tell a MacBook from a Chrome Book but if you are expecting an exacting breakdown of the computers or tech we’re going to be looking at here you may…
7×7 Dental Implant & Oral Surgery alleged victim of Abyss ransomware group
A leak site called “Abyss” recently added 7×7 Dental Implant & Oral Surgery Specialists of San Francisco (7×7) to their site and claimed to have 114 GB of the dental practice’s files. A file tree showing 2,891 directories and 63,557 files was posted as proof of claim. Some of the filenames suggest business-related internal documents,…
Microsoft leads effort to disrupt illicit use of Cobalt Strike, a dangerous hacking tool in the wrong hands
Elias Groll and AJ Vicens report: Microsoft’s Digital Crimes Unit, cybersecurity firm Fortra and the Health Information Sharing & Analysis Center announced legal action Thursday to seize domains related to criminal activity involving cracked copies of the security testing application Cobalt Strike, which has become a favorite tool for cybercriminals to carry out attacks around…