Tanya Eiserer and Jason Trahan report: The email arrived just after midnight on a Sunday last August. Addressed to Dallas Independent School District trustees and other top officials, the anonymous authors said the district had been the victim of a massive cyberbreach. They claimed to have access and downloaded huge amounts of student grade information,…
Indicators of Compromise Associated with LockBit 2.0 Ransomware and Additional Mitigations
On February 4, the FBI issued a Flash Alert: Indicators of Compromise Associated with LockBit 2.0 Ransomware Today, HHS’s Cybersecurity Program issued its companion HC3 alert. It says, in part: Impact to HPH Sector Although the LockBit 2.0 cybercrime gang claims to not attack healthcare organizations, all ransomware continues to act as a major cyber…
Ethical hackers face tough sanction under Jamaican law
From the threats-to-ethical-hacking-and-a-free-press department, Edmond Campbell reports: Ethical hackers who find vulnerabilities on government or private websites in Jamaica could face a $3-million fine and three-year prison sentence if a provision in the Cybercrimes Act, 2015, remains and receives the nod from Parliament. That threat could penalise actors such as Zack Whittaker, the security editor at…
More than half of Canadian ransomware victims paid the ransom demands in 2021 – study
TORONTO, Febr. 7, 2022 /CNW/ – Canadian IT company, NOVIPRO, today unveiled its sixth annual IT Portrait of Canadian Businesses in collaboration with Leger, which revealed the deep vulnerability of Canadian companies to computer attacks. The study reveals that more than half (56%) of organizations targeted by malware have paid the amounts requested by cybercriminals. Of these,…
Swissport ransomware attack leads to flight delays
Connor Jones reports: Aviation services company Swissport announced it was the victim of a ransomware attack on Friday, with some flights forced into delays and other operations disrupted. Neither the ransomware operator nor the type of ransomware used against the company is currently known, but the company reacted quickly to contain the attack, despite the disruption it caused….
Yes, the Equifax data breach settlement email and website are real
Erin Jones reports: In September 2017, consumer credit monitoring agency Equifax announced that the private information of 147 million Americans had been exposed in what is now known as one of the largest data breaches in history. Soon after the data breach was announced, the Federal Trade Commission, the Consumer Financial Protection Bureau and 50…