Brett Lackey reports: Piles of confidential documents containing the personal details of ANZ customers have been found thrown in a skip bin on a busy street by someone walking by. Scott Collins, 26, was walking near Armadale Central Shopping Centre, in Perth’s south-east, when he noticed the papers overflowing from the bins which were being used…
Another Texas school district with a data breach? (UPDATED)
LockBit has added White Settlement Independent School District in Texas to their leak site, with a proof pack that suggests that the threat actors were able to access — and may have exfiltrated — a lot of files. The listing was added yesterday. There is no notice on WSISD’s website that DataBreaches could find…
U.S. Marshals Service suffers ransomware breach that compromises sensitive information, senior law enforcement officials say
Andrew Blankstein, Michael Kosnar, Jonathan Dienst, and Tom Winter report: The U.S. Marshals Service suffered a security breach over a week ago that compromises sensitive information, multiple senior U.S. law enforcement officials said Monday. In a statement Monday, U.S. Marshals Service spokesperson Drew Wade acknowledged the breach, telling NBC News: “The affected system contains law enforcement sensitive information, including returns from…
CrowdStrike: Threat actors shifting away from ransomware
Alexander Culafi reports: Threat actors are shifting away from traditional ransomware and toward malware-free cyber attacks, according to a new report from CrowdStrike. The cybersecurity vendor this week published its “2023 Global Threat Report,” which annually compiles CrowdStrike’s research related to cybercrime, or “eCrime,” from the previous year. Major topics covered in the 2023 report include malware-free…
Forget the spy balloon. China-linked hackers collect far more information, report finds.
Larry Mayer reports: Even as the Chinese spy balloon floated across the U.S., China-linked hackers were gathering far more information by breaking into computer networks in America and around the world, according to a new report by a leading cybersecurity firm. CrowdStrike says in its annual global threat report that it observed China-linked cyberespionage groups targeting 39 industries on…
LastPass says employee’s home computer was hacked and corporate vault taken
Dan Goodin reports: Already smarting from a breach that put partially encrypted login data into a threat actor’s hands, LastPass on Monday said that the same attacker hacked an employee’s home computer and obtained a decrypted vault available to only a handful of company developers. Although an initial intrusion into LastPass ended on August 12,…