Antonio K. Smith reports: The most recent hack in the crypto industry is the hot wallet hacking of Lympo, which is a subsidiary of Animoca Brands and a sports NFT platform. The bad actors compromised the platform’s hot wallets and stole about 165.2 million LMT tokens worth $18.7 million at the time of the hack….
OpenSubtitles discloses successful extortion attempt, data breach
Catalin Cimpanu reports: OpenSubtitles, a website that provides free subtitles for movie fans, has disclosed today that it was hacked last year and subsequently paid a ransom to silence the hacker about the attack. The company disclosed today the incident after a copy of the stolen files leaked online and were indexed by the HaveIBeenPwned website….
Kings Plant Barn the latest retailer hit by click-and-collect data breach
Chris Keall reports: Kings Plant Barn has contacted customers about a security breach to FlexBooker, the internet-based system it uses to organise click-and-collect bookings. Names, email addresses and collection times were exposed. But the gardening chain says no credit card, password details or mobile have been spilled. Read more at New Zealand Herald.
Albuquerque Schools Confirm Ransomware Attack, Resume Class
Cedar Attanasio reports confirmation of what many of us suspected: Albuquerque Public Schools officials said Tuesday a cyber threat that forced the district to cancel classes for two days last week was a ransomware extortion attack. Read more at AP. The district is still saying that there is no evidence that any personal info of…
Unhappy New Year for cybercriminals as VPNLab.net goes offline
Do threat actors feel like walls are closing in on them? They might well be feeling that way — or maybe they should be feeling that way. From Europol, today: This week, law enforcement authorities took action against the criminal misuse of VPN services as they targeted the users and infrastructure of VPNLab.net. The VPN…
South Africa’s new traffic fine system exposed personal data
Jan Vermeulen reports: An online interface set up for the Administrative Adjudication of Road Traffic Offences (Aarto) system exposed the personal information of every South African who received an infringement notice under the new law. Personal data contained in the leak included full names, ID numbers, residential or business addresses, phone numbers, vehicle registration information,…