Bill Toulas reports: The new ‘AXLocker’ ransomware family is not only encrypting victims’ files and demanding a ransom payment but also stealing the Discord accounts of infected users. When a user logs into Discord with their credentials, the platform sends back a user authentication token saved on the computer. This token can then be used…
TX: Pearland ISD says hackers in recent computer breach may contact, harass parents
Yvette Orozco reports: Pearland ISD is alerting parents and others associated with the district that parties responsible for a recent breach of its computer system may try to contact them. In a video statement released on the district’s website, Superintendent Larry Berger said that an ongoing investigation shows no evidence so far that any sensitive information had…
Pointer: SuspectFiles interviews Venus ransomware group
Over on SuspectFile, Marco A. De Felice has written up an interview with Venus, a relatively new group in the ransomware landscape. You can read the interview here in both English and Italian. I found Venus’s answers to be a bit confusing at times, but some things do become clear from the interview — they…
AirAsia victim of ransomware attack, passenger and employee data acquired
AirAsia Group* pledges to be responsible when gathering personal information and to protect privacy “in every possible way.” That’s not a contract, mind you, but just an expression of their commitment. On November 11 and 12, AirAsia Group fell victim to a ransomware attack by Daixin Team. The threat actors, who were the topic of…
No sign patient information leaked; Interdev platform for Canadian paramedic agencies taken offline
Brendan Burke of The Peterborough Examiner reports: There’s nothing to suggest patients’ confidential information has been compromised after a cybersecurity incident forced Peterborough County-City Paramedics’ data collecting software system to be shut down earlier this week, says Chief Randy Mellow. “There’s absolutely no evidence that this incident has caused any medical or personal information to…
Indian govt Govt plans penalty of up to Rs 500 crore for data breach
Pankaj Doval reports: The government on Friday released the draft personal data protection bill, seeking to provide a framework for a strict user-consent regime for data processing, along with a penalty of up to Rs 500 crore for data breaches by social media and net companies while offering concessions to tech firms. Read more about…