Sergiu Gatlan reports: Web hosting giant GoDaddy says it suffered a breach where unknown attackers have stolen source code and installed malware on its servers after breaching its cPanel shared hosting environment in a multi-year attack. While GoDaddy discovered the security breach in early December 2022 following customer reports that their sites were being used…
BD issues cybersecurity alert for hacking risk found in Alaris infusion pump software
Andrea Park reports: A vulnerability found in software used to monitor some of BD’s infusion pumps could potentially give hackers access to personal data stored in the system. BD posted a cybersecurity bulletin about the issue Thursday and said it has already notified the FDA and the U.S. Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency…
Update to the Des Moines Public School ransomware attack
For some students in Des Moines, Iowa, the return to school after the winter holidays was soon interrupted by a cyberattack that resulted in classes being canceled. But as classes continued to be canceled, it became clearer that restoration and recovery would not be quick. By January 11, two days after the announcement of school…
Spain orders extradition of British alleged hacker to U.S.
AP reports: Spain’s National Court has agreed to the extradition to the U.S. of a British citizen who allegedly took part in computer attacks, including the July 2020 hacking of Twitter accounts of public figures such as Joseph Biden, Barack Obama and Bill Gates. A court statement Friday said requirements had been met for handing…
$150 million: the cost of a cyberattack?
The cyberattack reported by CommonSpirit last year has reportedly cost the firm $150 million already. From their unaudited quarterly report: The Cyber security Incident has had an estimated adverse financial impact of approximately $150 million to date, which includes lost revenues from the associated business interruption, the costs incurred to remediate the issues and other…
Bits ‘n Pieces (Trozos y Piezas)
ES: Cosmetics firm added by LockBit Skin and hair products firm Montibello has been added by LockBit3.0 to their leaks page. The listing was added on February 14th but without any filetree or proof. DataBreaches emailed Montibello to see if they would confirm or deny an attack but received no reply. There is nothing on…