Chris Fisher reports: Officials in Pottawatomie County say computer systems are slowly being restored after a ransom was paid to hackers. County officials say several of their servers were encrypted during a cyber attack on September 17, 2021. The county was able to resolve the attack by paying less than 10% of the hacker’s original demands….
Another Malaysia carrier allegedly hacked and data exfiltrated — Skynet
Desorden Group, who recently claimed to have successfully breached ABX Express, has contacted DataBreaches.net to report yet another logistics firm breach. This time, the claimed victim is Skynet.com.my. Skynet is a carrier company in Malaysia that provides domestic and international carrier services. Desorden Group provided DataBreaches.net with proof of claim — a video taken showing…
Former OnlyFans Employees Could Access Users’ and Models’ Personal Information
Samantha Cole reports: Some former OnlyFans support staff employees still had access to users’ data—including sensitive financial and personal information—even after they stopped working for the company used by sex workers to sell nudes and porn videos. According to a former OnlyFans employee who asked to remain anonymous because they feared retaliation, some ex-employees still…
FCC to work on rules to prevent SIM swapping attacks
Catalin Cimpanu reports: The Federal Communications Commission announced today plans to introduce new rules for US mobile carriers to address the rising wave of SIM swapping and port-out fraud attacks. The two attacks, while they have different names, are closely related. Both take place when mobile carriers fail to properly verify a customer’s identity when…
Thousands Affected by Ransomware Attack on Hawaii Company
Peter Boylan reports: About 4,500 customers of a Honolulu payroll processing company were potentially affected by a ransomware attack that exposed Social Security numbers, dates of birth, the full names of clients and bank account information. In mid-February, Hawaii Payroll Services LLC discovered its servers and databases had been breached by an unauthorized user. Read…
Neiman Marcus discloses May, 2020 incident that impacted 4.6 million customers
DALLAS, Sept. 30, 2021 /PRNewswire/ — Neiman Marcus Group (“NMG” or the “Company”) recently learned that an unauthorized party obtained personal information associated with certain Neiman Marcus customers’ online accounts. NMG notified law enforcement of the issue, which occurred in May 2020, and is working closely with Mandiant, a leading cybersecurity expert, to investigate. NMG’s…