Update: To read the original research report on the threat actors and sale/auction on the dark web, see this report by Guardicore. Catalin Cimpanu reports: More than 85,000 SQL databases are currently on sale on a dark web portal for a price of only $550/database. The portal, brought to ZDNet‘s attention earlier today by a security…
Search Results for: ransomware
Thai securities trading firm goes offline after cyberattack
It seems that yet another group of threat actors are trying the double-extortion method, replete with trying to get media coverage. “ALTDOS,” as they call themselves, contacted a number of news outlets in Thailand and online news sites to announce that they had attacked CGSEC on December 4. “A large Thailand SET public listed company…
More than 1 million patients notified of hack involving Dental Care Alliance
Dental Care Alliance is notifying patients this week of a hacking incident that began on September 18, was discovered October 11, and contained on October 13. Dental Care Alliance, LLC is based in Sarasota Florida, and describe themselves as a dental support organization. As they inform patients on their web site: You won’t see the…
Investigation in cyber attack stretches into second week, as students return to class
Eric Graves reports: Huntsville City School students are getting back to learning this week, after having several days off because of a cyber security threat. The only hitch, no devices. As the investigation into the possible ransomware attack continues, HCS administrators are still asking students to keep their laptops off and stay away from school…
Persist, Brick, Profit -TrickBot Offers New “TrickBoot” UEFI-Focused Functionality
AdvIntel & Eclypsium write: TrickBot malware now has functionality designed to inspect the UEFI/BIOS firmware of targeted systems. This marks a significant step in the evolution of TrickBot. Firmware level threats carry unique strategic importance for attackers. It is clear that TrickBot will benefit greatly from including a UEFI level bootkit in their kill chain….
Intersport victim of cyberattack for a second time in 2020?
First it was a Magecart attack on their web sites in Slovenia, Croatia, Serbia, Bosnia and Hercegovina and Montenegro, as reported in June. Now it appears to be a ransomware attack by Conti threat actors, who dumped more than two dozen files as alleged proof of access and exfiltration from the international sporting goods retailer….