In a letter dated August 13, the Research Foundation for the State University of New York disclosed that there had been unauthorized activity on its network between May 22, 2021 and July 9, 2021. The breach was discovered on July 14, and reportedly involved names and Social Security numbers. They do not mention receiving any…
Ransomware hackers hit 2 public wastewater plants in Maine
Kate Cough reports: The Department of Environmental Protection has warned municipalities and water-sector professionals to be on alert after two recent ransomware intrusions, believed to be the first on wastewater systems in Maine. The attacks occurred in Limestone and Mount Desert Island, said Judy Bruenjes, a wastewater technical assistance engineer for the DEP. Read more…
Cyberattack Hits Israel’s Bar Ilan University: ‘Data Is Being Erased Right Now’
Amitai Ziv reports: A cyberattack targeted Israel’s Bar Ilan University Sunday, the school reported. An internal email sent out by the university’s IT department said the attack was ongoing and urged staff to shut down their computers. “A serious cyberattack is underway right now against Bar Ilan University,” the internal mail said. “The attack involves…
Ford bug exposed customer and employee records from internal systems
Ax Sharma reports: A bug on Ford Motor Company’s website allowed for accessing sensitive systems and obtaining proprietary data, such as customer databases, employee records, internal tickets, etc. The data exposure stemmed from a misconfigured instance of Pega Infinity customer engagement system running on Ford’s servers. Read more on BleepingComputer.
T-Mobile Investigating Claims of Massive Customer Data Breach
Joseph Cox reports: T-Mobile says it is investigating a forum post claiming to be selling a mountain of personal data. The forum post itself doesn’t mention T-Mobile, but the seller told Motherboard they have obtained data related to over 100 million people, and that the data came from T-Mobile servers. The data includes social security…
Hack me once, shame on you. Hack me twice, shame on me?
Alicia Hope reports: A report by Ponemon Institute and commissioned by Team Cymru found that half of the organizations surveyed experienced disruptive cyber attacks from repeat sophisticated threat actors, the majority of whose exploits were unresolved. Although organizations acknowledged experiencing disruptive attacks and from repeat offenders, total remediation was not possible. According to the report,…