Alexander Martin reports: An elusive and highly covert Chinese hacking group tracked as GhostEmperor — notorious for its sophisticated supply-chain attacks targeting telecommunications and government entities in Southeast Asia — has been spotted for the first time in more than two years. And according to the researchers, the group has gotten even better at evading…
Trickbot dev arrested in Moscow
Catalin Cimpanu reports: Russian authorities have allegedly arrested a member of the Trickbot cybercrime gang in Moscow this week. According to a report from Russian news channel Baza, authorities have detained a 37-year-old man named Fedor Andreev on the morning of July 15 in a house in South Moscow. Andreev was allegedly detained based on an Interpol…
Two Foreign Nationals Plead Guilty to Participation in LockBit Ransomware Group
The following is a press release issued yesterday by the U.S. Attorney’s Office, District of New Jersey: Two foreign nationals pleaded guilty today in Newark federal court to participating in the LockBit ransomware group – at various times the most prolific ransomware variant in the world – and to deploying LockBit attacks against victims in…
Judge Guts SEC Case Against SolarWinds Over Cyber Practices
Cassandre Coyer reports: A US federal judge dismissed much of the Securities and Exchange Commission’s lawsuit against SolarWinds Corp. that alleged the software provider misled investors about its cybersecurity practices and the significance of a major data breach that spilled into the US government. Thursday’s ruling was seen as a blow to the SEC’s aggressive efforts to regulate…
Cyberattack on prescription service MediSecure affects 13 million Australians
Angus Dalton reports: Almost 13 million Australians had personal and health-related data stolen in the MediSecure cyberattack earlier this year, making the mass hack one of the largest ever. The Melbourne-based online prescription service company announced it was the victim of a ransomware data breach in May. A week later, a hacker claiming to possess…
Pueblo County D70 data breach may have compromised information of former students, staff
James Bartolo reports: Pueblo County School District 70 is addressing a data breach and ransomware attack that may have compromised the personal information of former students, as well as current and former staff. The data breach is believed to have impacted a number of student records saved between 1991 and 2006. Past and present staff…