Deccan Chronicle reports: A high alert has been sounded in view of possible attacks on as many as 12,000 Central and state government websites by Indonesian hackers. CERT-In issued an ‘Urgent- High Alert’ warning all Central and state agencies and departments to be alert and report any such incidents to them immediately. Read more at…
Cyberattack cost Ontario town $1.3M, including $290k in Bitcoin ransom
Galen Simmons reports: A cyberattack on the Town of St. Marys that encrypted municipal systems and stole sensitive data cost the local government roughly $1.3 million, including a $290,000 Bitcoin ransom payment made to the hackers, officials have revealed. Two days after the town’s computer systems were crippled in the July 20, 2022, ransomware attack,…
Over a Million Financial Records Exposed in Data Incident Involving NorthOne Bank
Jeremiah Fowler discovered yet another unsecured database. This one reportedly had more than one million financial records: The PDF documents that were made public included invoices from both individuals and businesses who used an app to pay for products and services. The invoices contained names, email addresses and physical addresses, phone numbers, and more. In…
Looks like Karakurt is back… (Update 1)
And they have added two medical entities to their leak site today — Medicalodges in Kansas and Petaluma Health Center in California. They provide no proof for either claim, and neither entity has any notice on their respective sites about any incident, so for now, these are unconfirmed claims. Update 1: DataBreaches received a statement…
How the Federal Tort Claims Act Extricates Certain Health Care Providers From Data Breach Class Action Suits
John Cleary and Shundra Crumpton Manning of Polsinelli write: Data breach class action litigation continues to occupy center stage in the ongoing struggle to secure compensation and redress for legitimate victims of actionable cybersecurity shortcomings of data owners. The underlying scenarios in these cases encompass criminal hacking episodes, rogue employees, carelessness and unforeseen material gaps…
Push to ban ransomware payments following Australia’s biggest cyberattack
Luke Huigsloot reports: The Australian government is being pushed to ban the payment of cyber ransoms, usually demanded in cryptocurrency, following a local business suffering a mass data breach and subsequent ransom demand. […] The Australian government’s lead cybersecurity agency, the Australian Cyber Security Centre (ACSC), currently recommends that victims of ransomware attacks never pay…