Sarah Coble reports: Litigation filed against American fast-food chain Sonic over a 2017 data breach has been allowed to proceed. Financial institutions brought a lawsuit against Sonic Corp after it emerged that financial data belonging to customers of the restaurant had been stolen in a cyber-attack. The attacker(s) installed malware on a point-of-sale system used at hundreds of Sonic franchises. Read…
Br: Hackers take part of Anvisa’s website off the air and replace it with Argentina’s flag
Abhishek Pratap reports: The official website of the National Health Surveillance Agency (Anvisa) was targeted by hackers. The invaders took the Traveler’s Health Declaration form off the air and replaced it with the Argentine flag. The action was considered by the agency as a retaliation for the suspension of the match between Brazil and Argentina….
Ukrainian Cyber Criminal Extradited For Decrypting The Credentials Of Thousands Of Computers Across The World And Selling Them On A Dark Web Website
Tampa, Florida – Acting United States Attorney Karin Hoppmann announces the extradition of Glib Oleksandr Ivanov-Tolpintsev (28, Chernivtsi, Ukraine) in connection with charges of conspiracy, trafficking in unauthorized access devices, and trafficking in computer passwords. If convicted on all counts, he faces a maximum penalty of 17 years in federal prison. The indictment also notifies…
REvil ransomware’s servers reappear without fanfare or explanation
Brett Callow of Emsisoft broke the unpleasant news on Twitter last night — REvil’s dedicated leak site, “The Happy Blog,” which had disappeared after the Kaseya supply chain attack, had reappeared at its old onion address. Unfortunately, the Happy Blog is back online #REvil pic.twitter.com/vMr9qTOht2 — Brett Callow (@BrettCallow) September 7, 2021 There were no…
Texas Right to Life website exposed job applicants’ resumes
Zack Whittaker reports: Anti-abortion group Texas Right to Life exposed the personal information of hundreds of job applicants after a website bug allowed anyone to access their resumes, which were stored in an unprotected directory on its website. A security researcher told TechCrunch that the group’s main website, built largely in WordPress, was not properly…
WV: Bridgeport city government hacked, residents put on notice
Mike Nolting reports: Residents of Bridgeport have been notified city government was hacked in late May of this year. A five-page letter to residents said city IT systems were encrypted by ransomware that lets hackers hold data until a ransom is paid. […] There is no proof hackers were able to access information, but information…