I’ve occasionally seen evidence that one victim was hit by more than one group or threat actor, but Sophos provides the most detailed reporting I’ve ever seen on one such incident. Sean Gallagher takes us through the saga that impacted a healthcare provider in Canada hit by two separate ransomware groups — Karma and Conti….
Toyota to halt operations at all Japan plants due to cyberattack
Reuters reports: Toyota said it will suspend all domestic factory operations on Tuesday losing around 13,000 cars after one a company supplying plastic parts and electronic component was hit by a suspected cyberattack. No information was immediately available about who was behind the attack or the motive. The attack comes just after Japan joined Western…
Bridgestone investigating possible information security breach
Hollie West reports: Some employees at Bridgestone’s La Vergne plant reported being sent home Sunday morning due to a possible cyber attack. Bridgestone Americas confirmed that it learned of a potential security incident and has launched an investigation. The company says it has disconnected some manufacturing and retreading facilities in North America and Latin America…
Ukrainian Cyberpolice recruit help fighting Russia
None of the press email addresses for the Ukrainian cyberpolice have been working, so I’ll just post a notice from them here. I had reached out to them to ask them if they had tried directly recruiting those who they have arrested in the past, such as those affiliated with Clop. I’ve also sent an…
260,000 confidential attorney discipline records published after data breach, State Bar of California says
Scott Schwebke reports: A website that aggregates court cases nationwide has published 260,000 confidential attorney discipline records, the State Bar of California said Saturday, Feb. 26. The data breach by shadowy judyrecords.com was first discovered Friday by the State Bar. “We apologize to anyone who is affected by the website’s unlawful display of nonpublic data,”…
Conti ransomware gang chats leaked by pro-Ukrainian member
Catalin Cimpanu reports: A member of the Conti ransomware group, believed to be Ukrainian of origin, has leaked the gang’s internal chats after the group’s leaders posted an aggressive pro-Russian message on their official site, on Friday, in the aftermath of Russia’s invasion of Ukraine. The message appears to have rubbed Conti’s Ukrainian members the…