Ben Potter and Carrie LaFrenz report: In the third major corporate security breach in as many weeks, Woolworths is scrambling to contact 2.2 million customers of its MyDeal online marketplace arm whose data has been accessed by an unauthorised user using “compromised” credentials, the supermarkets giant said on Friday evening. […] Of the 2.2 million estimated to…
Authorities name North Korea hacker group, warn of attacks on Japanese crypto assets
The Yomiuri Shimbun reports: The North Korean hacker group Lazarus has conducted cyber-attacks targeting Japanese crypto asset companies, according to the National Police Agency. It is unusual to name a suspected attacker before taking such actions as an arrest, but in this case, authorities have adopted a method called “public attribution,” using it in Japan…
Feds: Ex Louisville Police Officer Used Law Enforcement Tech To Help Hack Sexually Explicit Photos From Women
Josh Wood reports: A former Louisville Metro Police Department officer used law enforcement technology as part of a scheme that involved hacking the Snapchat accounts of young women and using sexually explicit photos and videos they had taken to extort them, federal prosecutors said in court documents filed on Tuesday. According to a sentencing memorandum,…
Thumb drive with confidential Yukon gov’t case files found in Whitehorse pawn shop
CBC reports: The Yukon government, RCMP and the territory’s privacy commissioner are investigating how a thumb drive containing confidential case files belonging to the Health and Social Services department ended up at a Whitehorse pawn shop. City resident Brian Zink discovered the data after he bought the thumb drive at a pawn shop. Read more at CBC. h/t, @fanCRTCProfling
Police tricks DeadBolt ransomware out of 155 decryption keys
Sergiu Gatlan reports: The Dutch National Police, in collaboration with cybersecurity firm Responders.NU, tricked the DeadBolt ransomware gang into handing over 155 decryption keys by faking ransom payments. DeadBolt is a ransomware operation active since January and known for demanding 0.03 bitcoin ransoms after encrypting thousands of QNAP and Asustor Network Attached Storage (NAS) devices (20,000…
Phishing incident may have exposed Seton patient names, clinical information
Jack Dowling reports: A vendor associated with Seton Medical Center in Harker Heights was recently the victim of a phishing incident, according to a news release from the hospital late Friday afternoon. According to the center, an unauthorized agent accessed the email accounts of two of the vendor’s employees. Read more at KDH News.