It’s often quite difficult to code incidents for analysis purposes. Consider the following notification’s description of what happened, as one example: Mesa, AZ: November 3, 2021 – Baywood Medical Associates, PLC dba Desert Pain Institute (“DPI”), a health care provider specializing in pain management located in Mesa, Arizona, has become aware of a data security incident…
Cyberattack Hits Multiple Greek Shipping Firms
The Maritime Executive reports: Multiple Greek shipping companies have been hit by a ransomware attack that spread through the systems of a popular, well-established IT consulting firm, according to Greek outlet Mononews. Danaos Management Consultants, the IT service provider whose services were affected by the hack, confirmed the incident and. The company said that Danaos’…
CISA urges vendors to patch BrakTooth bugs after exploits release
Sergiu Gatlan reports: Researchers have released public exploit code and a proof of concept tool to test Bluetooth devices against System-on-a-Chip (SoC) security bugs impacting multiple vendors, including Intel, Qualcomm, Texas Instruments, and Cypress. Collectively known as BrakTooth, these 16 flaws impact commercial Bluetooth stacks on over 1,400 chipsets used in billions of devices such as…
US sanctions four companies selling hacking tools, including NSO Group & Candiru
Catalin Cimpanu reports: The US government has sanctioned today four companies that develop and sell spyware and other hacking tools, the US Department of Commerce announced today. The four companies include Israel’s NSO Group and Candiru, Russian security firm Positive Technologies, and Singapore-based Computer Security Initiative Consultancy. Read more on The Record.
Conservatives call for investigation into government data breaches that may have put Afghans in danger
CBC reports: The Conservatives have written to Privacy Commissioner Daniel Therrien to complain about a pattern of data breaches at Immigration, Refugees and Citizenship Canada (IRCC), CBC News has learned. The complaint is in response to a string of misdirected emails last month that may have exposed hundreds of vulnerable Afghans to danger. Read more on Yahoo!…
Reward Offers for Information to Bring DarkSide Ransomware Variant Co-Conspirators to Justice
PRESS STATEMENT NED PRICE, DEPARTMENT SPOKESPERSON NOVEMBER 4, 2021 The U.S. Department of State announces a reward offer of up to $10,000,000 for information leading to the identification or location of any individual(s) who hold(s) a key leadership position in the DarkSide ransomware variant transnational organized crime group. In addition, the Department is also offering…