From the Information Commissioner’s Office: We have issued the London Borough of Hackey with a reprimand following a cyber-attack in 2020 that led to hackers gaining access to and encrypting 440,000 files, affecting at least 280,000 residents and other individuals including staff. In October 2020, hackers attacked the London Borough of Hackney (LBoH) systems –…
Car dealer software slinger CDK Global said to have paid $25M ransom after cyberattack
Matthew Connaster reports: CDK Global reportedly paid a $25 million ransom in Bitcoin after its servers were knocked offline by crippling ransomware. Last week, CDK restored services to car dealerships across the US after a two-week outage caused by a “cyber incident” that looked a lot like a ransomware infection. The shutdown of CDK’s software platform caused…
Microsoft links Scattered Spider hackers to Qilin and RansomHub ransomware attacks
Sergiu Gatlan reports: Microsoft says the Scattered Spider cybercrime gang has added Qilin ransomware to its arsenal and is now using it in attacks. “In the second quarter of 2024, financially motivated threat actor Octo Tempest, our most closely tracked ransomware threat actor, added RansomHub and Qilin to its ransomware payloads in campaigns,” Microsoft said Monday. After…
Cyberattack costs growing at UnitedHealth Group, could reach $2.45 billion for this year
Christopher Snowbeck reports: Second quarter earnings beat analyst expectations at UnitedHealth Group, even as the Minnetonka-based health care giant said it saw more expenses handling the fallout from a massive cyberattack earlier this year. The company now expects cyberattack costs could reach $2.45 billion for the year, including more direct expenses for financial support for…
Hackers claim Disney data theft in protest against AI-generated artwork
Alex Hern reports: Hacktivists claim to have stolen more than a terabyte of data from Disney’s internal chat platform and are leaking the information online in a protest against what they say is the company’s anti-artist stance. The group, which calls itself NullBulge, has been active since at least May. It claims to be motivated…
Au: Healthed data breach exposes personal details
Michelle Wisbey reports: The personal details of a large number of GPs have been published online, in a data breach leaving doctors feeling ‘significantly concerned’. Australian healthcare educator Healthed confirmed that late on Sunday, 14 July, the company became aware of ‘a vulnerability within the Healthed website’ It traced this to work undertaken by a…