The Office of Information Security and the Health Sector Cybersecurity Coordination Center (HC3) have published a new threat brief on APT41. The brief is TLP:WHITE. Overview Chinese State-Sponsored Threat Actor Members of APT41 have been actively tracked since 2012 Also Known As: Double Dragon, Barium, Winnti, Wicked Panda, Wicked Spider, TG-2633, Bronze Atlas, Red Kelpie…
DESORDEN leaks more data from Indonesia; “Indo data is officially worthless”
The DESORDEN group recently announced that due to the flood of personal information on Indonesians, they were giving up on attacking Indonesian entities. But they also noted that they already had some attacks in progress that they would still be leaking. Today, they announced one of those attacks on a popular hacking-related forum where data…
Morgan Stanley to pay $35 million fee for ‘astonishing’ customer data disposal practices
Jonathan Greig reports: Morgan Stanley will pay a $35 million penalty to settle charges from the U.S. Securities and Exchange Commission for wide-ranging failures around properly disposing of hard drives and servers containing the personal information of some 15 million customers. The company did not respond to requests for comment, but the SEC said in…
AU: ‘One of the most serious cyberattacks’: Customer data exposed in Optus hack
Nick Bonyhady reports: Hackers have breached Optus’ systems in one of the largest cyberattacks in Australian history, accessing names, dates of birth, phone numbers, email addresses, physical addresses and driver’s licence numbers of millions of the telecommunications giant’s customers. Well-placed sources not authorised to speak publicly said that up to 9 million customers had been…
Sierra College investigating scope of latest ransomware incident
In May 2021, Sierra College in California confirmed that it was hit by a ransomware attack. Whatever steps the college may have taken to prevent another ransomware attack were apparently not sufficient, however, because Vice Society added the college to its list of “partners” this week. Vice did not post any data at this point,…
Wolfe Clinic notifies patients of Eye Care Leaders breach
I tweeted this yesterday, but probably should note it here too: When I saw Wolfe Clinic had reported a breach to HHS impacting 542,776 patients, I thought they had just updated their 500k figure from the ransomware attack by Lorenz last year. But it turned out that this was a new, and unrelated report due…