Is “Bl00dy Ransomware Gang” a new ransomware group on the scene, a rebrand, or neither? In July, a new channel appeared on Telegram called the “Bl00dy Ransomware Gang.” In August, information about alleged victims started to appear. So far, the gang has leaked some data allegedly from three victims in two incidents. In each case,…
PA: Chester Upland schools victim of BEC scheme to the tune of $3 million
Alex Rose reports: Delaware County District Attorney Jack Stollsteimer announced Friday that an international thief or thieves stole approximately $3 million from the Chester Upland School District last year using a Florida woman as a “money mule,” but said it might have been much worse if not for the intervention of officials with the Department…
Akasa Air suffers data breach
PTI reports: Akasa Air has suffered data breach resulting in access of user information by unauthorised individuals. The airline, which started operations on August 7, has apologised to its customers and has “self-reported the incident” to CERT-In, according to a communication. Read more at The Telegraph India.
Election data breach attracts Georgia investigators
Danny Hakim, Neil Vigdor and Richard Fausset report: The day after Donald Trump’s supporters stormed the Capitol, a small group working on his behalf traveled to rural Coffee County, Ga., about 200 miles southeast of Atlanta. One member of the group was Paul Maggio, an executive at a firm based in Atlanta called SullivanStrickler, which…
Facebook-Cambridge Analytica data breach lawsuit ends in 11th hour settlement
Mark Townsend reports: Facebook has dramatically agreed to settle a lawsuit seeking damages for allowing Cambridge Analytica access to the private data of tens of millions of users, four years after the Observer exposed the scandal that mired the tech giant in repeated controversy. A court filing reveals that Meta, Facebook’s parent company, has in principle settled for an…
A huge phishing campaign has targeted over 130 companies, affecting Twilio and Signal
Jess Weatherbed reports: Over 130 organizations, including Twilio, DoorDash, and Cloudflare, have been potentially compromised by hackers as part of a months-long phishing campaign nicknamed “0ktapus” by security researchers. Login credentials belonging to nearly 10,000 individuals were stolen by attackers who imitated the popular single sign-on service Okta, according to a report from cybersecurity outfit Group-IB. Read more…