Monica Benevides reports: Worcester contractor Coghlin Electrical Corp. experienced a ransomware attack on Monday [July 26], although compromised files have been recovered, the Worcester Telegram & Gazette reported Friday. When reached via email by WBJ, Coghlin CEO Sue Mailman declined to expand on the situation. From the earlier report and this one, it sounds like…
Research finds cyber-snoops working for ‘Chinese state interests’ lurking in SE Asian telco networks since 2017
Gareth Halfacree reports: Attack protection specialist Cybereason has fingered threat actors working on behalf of “Chinese state interests” as being behind attacks on telcos operating in Southeast Asia – with some having been prowling the penetrated networks for information on high-value targets since 2017. Cybereason’s DeadRinger report, published today, described the attacks as being carried out…
Insurance Broker Gallagher Sued Over Ransomware Attack
Andrew G. Simpson reports: Insurance and benefits broker Arthur J. Gallagher is the target of a proposed class action lawsuit over a ransomware attack it suffered in 2020. The plaintiffs allege that Gallagher failed to follow federal and state government and industry standards to protect their personal information from hackers and failed to adequately notify…
An interview with BlackMatter
Curious about the new kids on the ransomware block and whether they are really new kids or just old hands forming a new group? Read this great interview by Dmitry Smilyanets on The Record.
Ca: SD73’s insurance provider for international students suffers cybersecurity breach
CFJC reports: School District No. 73 (SD73, Kamloops-Thompson) said it was notified that guard.me, the travel and medical insurance provider for its international student program, experienced a cybersecurity breach incident. Personal information that may be impacted by this incident includes identity information, contact information, and other information provided to support submitted claims. Read more on…
Decryptor released for Prometheus ransomware victims
Catalin Cimpanu reports: Taiwanese security firm CyCraft has released a free application that can help victims of the Prometheus ransomware recover and decrypt some of their files. Available on GitHub, the decryptor effectively works by brute-forcing the encryption key used to lock the victim’s data. Read more on The Record.