NHK reports: The Shibuya Ward office in Tokyo has issued a formal apology after an apparent cyberattack disrupted public services on Wednesday. […] On Tuesday, an international hacker group calling themselves “Anonymous” posted on Twitter that “shibuya municipality closes homeless shelter so we close shibuya municipality website.” Read more at NHK.
ANPD Updates Information Security Incident Notification Guidelines
Cristiane Manzueto, Rodrigo Leal, and Flavia Telles of Mayer Brown write: The Brazilian National Data Protection Authority (ANPD) has published new guidelines on information security incident notifications, which are required whenever an incident is likely to create risks or cause significant damages to data subjects. In summary, here are the new updates: A new form for…
Swansea Public Schools cancel classes Wednesday after ransomware attack
Ryan Mancini reports: Schools canceled classes on Wednesday after the Swansea Public Schools was reportedly struck by a ransomware attack. Superintendent John J. Robidoux informed families on Tuesday that the district’s network was shut down. Read more at MassLive. h/t, Doug Levin
HC3: Analyst Note: Pro-Russian Hacktivist Group ‘KillNet’ Threat to HPH Sector
December 22, 2022 TLP:CLEAR Report: 202212221500 Executive Summary HC3 is closely tracking hacktivist groups which have previously affected a wide range of countries and industries, including the United States Healthcare and Public Health (HPH) sector. One of these hacktivist groups—dubbed ‘KillNet’—recently targeted a U.S. organization in the healthcare industry. The group is known to launch…
Just snarky or dangerous? Ransomware gang cloned victim’s website to leak stolen data
Ionut Ilascu reports: The ALPHV ransomware operators have gotten creative with their extortion tactic and, in at least one case, created a replica of the victim’s site to publish stolen data on it. It appears that ALPHV, also known as BlackCat ransomware, is known for testing new extortion tactics as a way to pressure and shame their…
Why Do Ransomware Victims Pay for Data Deletion Guarantees?
Mathew J. Schwartz reports: Many ransomware-wielding attackers are expert at preying on their victims’ compulsion to clean up the mess. Hence victims often face a menu of options: Pay a ransom for a decryptor, and you’ll be able to unlock forcibly encrypted data. Pay more, and your name gets deleted from the list of victims…