Linda Smith, Rajat Wason, and Syed Zaidi of Sophos write: In May 2022, an automotive supplier was hit with three separate ransomware attacks. All three threat actors abused the same misconfiguration – a firewall rule exposing Remote Desktop Protocol (RDP) on a management server – but used different ransomware strains and tactics. The first ransomware…
Newton Falls schools report possible security breach
Staff reports: The school district said it has been made aware of a possible security breach impacting several students’ Social Security numbers and potential tax fraud. District administrators and the schools’ technology department actively are investigating the issue “but at this time, we have no evidence of a security breach through Newton Falls Exempted Village School…
$8 Million Multistate Settlement Resolves 2019 Waa Data Breach Investigation
Kirk Nahra and Amy Gopinathan of Wilmer Hale write: State Attorneys General settle with Wawa, Inc. for 2019 data breach that compromised approximately 34 million payment cards used by consumers. On July 26, 2022, Acting New Jersey Attorney General Matthew J. Platkin announced that New Jersey is co-leading an $8 million multistate settlement with Wawa, Inc. (Wawa)…
Malware attacks reported by three Japanese entities
Two of the following incidents occurred in June; the first one is recent: WDB Holdings Co. Ltd confirms ransomware attack WDB Group (WDB Holdings) issued the following statement on August 2: Since August 1, 2022, we have been experiencing an issue that prevents us from accessing the mail system and file servers of our group’s…
German school hit by ransomware
inFranken reports (machine translation): The computer systems of the Simon-Marius-Gymnasium in Gunzenhausen were temporarily unavailable last week. The reason for this was a cyber attack. The district office of Weißenburg-Gunzenhausen provided information about this in a press release on Tuesday (09/08/2022). The search for those responsible is now beginning. “This resulted in the deletion of…
Former Twitter Employee Found Guilty of Acting as an Agent of a Foreign Government and Unlawfully Sharing Twitter User Information
A federal jury yesterday convicted a former Media Partnerships Manager for the Middle East/North Africa (MENA) region at Twitter of acting as a foreign agent without notice to the Attorney General, conspiracy, wire fraud, international money laundering, and falsification of records in a federal investigation. The verdict follows a two-week trial before the Honorable Senior…