Alexander Culafi reports: Illinois, Minnesota and Missouri state governments are among a growing list of organizations attacked via a critical flaw in Progress Software’s MoveIT Transfer product. Progress Software on May 31 detailed an SQL injection bug in its managed file transfer (MFT) software MoveIt Transfer. Progress urged customers to immediately apply mitigations for the…
Court unseals long-awaited election security reports
Analysis by Tim Starks with research by David DiMolfetta: A long-awaited report on the cybersecurity vulnerabilities of election machines in Georgia was finally released alongside another report on Wednesday, but the two sides of a long-running dispute over the security of the state’s election machines can’t agree on what conclusions to draw. The first report — by University…
City of Augusta, GA data theft “one of the largest government data thefts in recent years in U.S.” — SuspectFile
Marco A. De Felice of SuspectFile writes: This article will serve to retrace, documenting them, the various steps that led us to have an exchange of numerous emails with the BlackByte ransomware group. We will tell, through a series of data, what damage the computer attack and the consequent theft of documents caused to the…
Understanding Ransomware Threat Actors: LockBit
Alert Code AA23-165A CISA has posted an advisory on LockBit. SUMMARY In 2022, LockBit was the most deployed ransomware variant across the world and continues to be prolific in 2023. Since January 2020, affiliates using LockBit have attacked organizations of varying sizes across an array of critical infrastructure sectors, including financial services, food and agriculture,…
Big Law, Big Problems: Fox Rothschild LLP Employees Face Serious Allegations of Malpractice and Criminal Activity
The following is a law firm-generated press release about a case they have filed. Keeping in mind that a complaint is allegations that have yet to be proven or disproven, DataBreaches has included this item on this site because if true, it would be a case of insider-wrongdoing via misuse of a client’s information. NEWS…
The “reincarnation” of BreachForums: A cyberdrama in three acts
BreachForums has been reincarnated. But as with all things related to BreachForums, its reincarnation has been accompanied by all kinds of drama. Act 1: The Prequel: Arrest and Chaos Act 1. Scene 1. BreachForums’s owner is arrested in New York. The arrest was made on March 15, but first hit the news on March 17….