Damien Bancal reports (machine translation): At the end of May, the Canadian College MontMorency announced that it had suffered a cyber attack with a possible theft of personal data. ZATAZ confirms: pirates have copied everything, and they are starting to broadcast. Read more at Zataz. This was an Avos Locker attack.
10,000 organisations targeted by phishing attack that bypasses multi-factor authentication
Graham Cluley writes: Microsoft has shared details of a widespread phishing campaign that not only attempted to steal the passwords of targeted organisations, but was also capable of circumventing multi-factor authentication (MFA) defences. The attackers used AiTM (Attacker-in-The-Middle) reverse-proxy sites to pose as Office 365 login pages which requested MFA codes, and then use them…
Rhode Island sewer-system operator hit by cyber attack
Paul Edward Parker reports: The Narragansett Bay Commission, which runs sewer systems in parts of the metropolitan Providence and Blackstone Valley areas, was hit by a ransomware attack on its computer systems. […] “Last week, the Narragansett Bay Commission identified a cybersecurity incident that involved the encryption of data on certain computers and systems in its…
Shanghai data breach exposes suppression of ‘white-hat’ security research in China
Jane Tang for RFA Mandarin reports: Ren, a U.S. citizen who has lived in China for decades, didn’t realize she was the victim of what could be the biggest data breach in Chinese history until she got a call from RFA. She held her breath as, one by one, her ID card number, date of…
Inside The Russian Cybergang Thought To Be Attacking Ukraine—The Trickbot Leaks
Davey Winder reports: … I can exclusively report that threat intelligence specialist Cyjax has today published an in-depth analysis delving deep into the heart of the Trickbot cybergang. Months of painstaking research through hundreds of leaked documents has resulted in what is possibly the most comprehensive breakdown of a significant international cybercrime syndicate I’ve seen. Covering…
Baton Rouge General Medical Center ransomware attack has caused patients to be diverted to other hospitals, lost records, and lab services down — source
By July 1, word was circulating that the Baton Rouge General Medical Center in Louisiana had been hit by ransomware. A copy of the ransom note shared with DataBreaches pointed clearly to the Hive group, but when asked about it, Hive’s spokesperson claimed that DataBreaches had “incorrect info.” Since then, the medical center has not…