Times Now reports: Only a few weeks after hackers breached India’s premier government hospital, AIIMS Delhi, they have moved on to the Indian government’s web portal for COVID-19 vaccination, CoWIN.gov.in, selling sensitive information to the highest bidder on the Dark Web. […] The evidence provided by the hacker consists of screen captures of the portal’s administrative interface, which…
MN: State network data breach has potential impact on some Rochester Public Library users
Post Bulletin reports: Rochester Public Library was notified that one of its library service partners, MNLINK, experienced a data breach on Dec. 15, 2022. Through the random cyber attack, the names and email address of 1,709 Rochester library customers might have been accessed. Read more at Post Bulletin.
LockBit 3.0: usurpers multiply and go upmarket
Valéry Rieß-Marchive reports (machine translation): A new impersonator of the LockBit 3.0 ransomware franchise has just been spotted. Like the one who attacked the André-Mignot hospital in Chesnay-Rocquencourt at the beginning of December, he does not offer a Web interface accessible via Tor to discuss with his victims and, if necessary, negotiate the requested ransom: the…
Ca: School board confirms hack; attacker sent note through photocopiers
James Hopkin reports: The Huron-Superior Catholic District School Board has confirmed that board officials received a note this morning — delivered through photocopiers at its main office and a number of schools — advising them that the board’s computer and phone systems had been hacked. Spokesperson Jim Fitzpatrick was tight-lipped this afternoon when asked by SooToday if…
Cyber attack on NZ’s largest insurer of doctors MAS may have exposed members’ personal data
NZ Herald reports: A cyber attack on the after-hours call service of New Zealand’s largest insurer of medical professionals has potentially exposed the personal data of its members. MAS insurance has released a statement this afternoon revealing a third-party supplier of after-hours call-centre services for the company “has recently notified us of a breach of…
Shiseido data breach victims plan legal action over fake companies
Alex Scroxton reports: Employees and former employees of the UK business of Japanese cosmetics firm Shiseido who found their personal information had been exposed in a data breach are being asked to come forward to take part in a proposed group legal action against the company. The breach took place in the spring of 2022 and was…