Ian King and William Turton report: A cyber breach suffered by Nvidia Corp. in recent days appears to have been a ransomware attack that’s not connected to the crisis in Ukraine, according to a person familiar with the incident. The hack looks to be relatively minor and not fueled by geopolitical tensions, said the person, who asked…
LA: Spine Diagnostic & Pain Treatment patient files show up on ransomware site
It looks like we may need to add Spine Diagnostic & Pain Treatment to our list of medical entities hit by ransomware groups. Conti Team added the Louisiana provider to their leak site earlier today, dumping 3,351 files that they claim represent 30% of all the files they exfiltrated. Inspection of the files, which compromised…
Conti ransomware group threatens retaliatory attacks on critical infrastructure of countries that attack Russia
Eric Geller reports: A Russian ransomware gang on Friday threatened to hack the critical infrastructure of any nation or organization that retaliates against Moscow for its invasion of Ukraine, according to a statement shared by cybersecurity researchers. Read more at Politico. Here is Conti’s “Warning,” as posted on their site (the following appears to be a revision…
Dubai-based Gems Education hit by cyber attack; scope of attack under investigation
Alkesh Sharma reports: Gems Education, the largest education operator in the UAE, faced a cyber attack that had a minimal impact on the group’s operations, the company said on Thursday. The company said an investigation was under way. It has not yet confirmed whether any personal or financial data has been breached. Read more at The…
At Least 22 States Have Consumer Privacy Legislation Pending – Will 2022 Be the Year for More State Privacy Laws?
Deborah George of Robinson & Cole writes: California is the gold standard for state privacy laws, having recently enacted the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA). Virginia and Colorado also have enacted comprehensive privacy laws, which will take effect in 2023. Recently, the International Association of Privacy Professionals (IAPP)…
NSW driver’s licence data stolen in Accellion breach
Justin Hendry reports: Driver’s licence details were among the personal information stolen from Transport for NSW in the Accellion data breach last year, iTnews can reveal. It has also emerged that at least 500 customers and employees of the agency were impacted in the incident, some of which are only now being notified. TfNSW confirmed it…