Alert (AA22-137A) Weak Security Controls and Practices Routinely Exploited for Initial Access CISA Alert Published May 17, 2022: Summary Cyber actors routinely exploit poor security configurations (either misconfigured or left unsecured), weak controls, and other poor cyber hygiene practices to gain initial access or as part of other tactics to compromise a victim’s system. This…
Data leak containing info of 22.5 million Malaysians not from NRD, says Hamzah
Mazwin Nik Anis reports: The alleged data leak containing information of 22.5 million Malaysians is not from the National Registration Department (NRD), says Datuk Seri Hamzah Zainudin. The Home Minister said there was a mechanism in place which could prove that the leaked information did not come from the department. Read more at TheStar.
Mandiant Quietly Investigating Suspected Russian Intrusions
Katrina Manson reports: Right now, cyber investigators at Mandiant say they’re actively responding to more than a dozen live intrusions by Russian foreign intelligence services aimed at diplomats, military computers, defense contractors and other targets. […] One reason the Russian attacks aren’t making headlines is that, according to Mandiant’s findings, the actual number of them is roughly…
Christus Health ransomware incident involved theft of sensitive patient and employee data
First, the good news (such as it is): a ransomware attack on Christus Health by Avos Locker has not impacted patient care. Now, the bad news: the threat actors acquired — and have already leaked — a lot of sensitive information on patients and employees. On May 11, Avos Locker added Christus Health to their…
Conti claims to have inside information on Costa Rica, escalates threats
DataBreaches previously reported on the situation in Costa Rica, where the government has declared a national emergency following a ransomware attack by Conti. What is of special note in this incident are Conti’s escalating threats in their attempt to get their ransom demands paid and the self-identification of the affiliate involved (who calls themself “unc1756”)….
Former top Republican lawmaker in Colorado received leak of voting data
Alexandra Ulmer reports: A former Republican minority leader of the Colorado legislature is among the recipients of a trove of sensitive voting data leaked by a county official working with activists seeking to prove President Donald Trump’s false stolen-election claims, according to court records reviewed by Reuters. The revelation indicates the breach of ballot data…