LATEST POST
Microsoft: SysAid zero-day flaw exploited in Clop ransomware attacks
Bleeping Computer reports: Threat actors are exploiting a zero-day vulnerability in the service management software SysAid to gain access to corporate servers for data theft and to deploy Clop ransomware. SysAid is a comprehensive IT Service Management (ITSM) solution that provides a suite of tools for managing various IT services within an organization. The Clop ransomware is notorious […]
Southwestern Ontario hospitals will rebuild network from scratch amid fallout from cyberattack
Five hospitals in southwest Ontario are still working to restore services and predict that while services are being restored, it may take months to figure out who was affected by a recent ransomware attack on their IT vendor, TransForm SSO, that resulted in locked files and the theft of millions of data files and records […]
NYDFS Amends Cybersecurity Regulation; Some Provisions Go Into Effect December 1
New York State continues to strengthen cybersecurity regulations for financial institutions. New amendments to the Cybersecurity Regulation enacted in 2017 strengthen the regulation and add new security obligations. As Hunton Andrews Kurth summarizes it, “The new amendments strengthen the initial framework and require NYDFS-regulated entities to adhere to a number of additional prescriptive data security […]
Sun Life third-party breach exposes 212K individuals
CyberNews reports: Sun Life data was exposed after MOVEit hackers breached Pension Benefit Information (PBI), jeopardizing hundreds of thousands of individuals. Sun Life, a financial services company managing a trillion dollars worth of assets, informed the Maine Attorney General that a third-party breach had impacted 212,129 individuals. Earlier this year, the company was impacted by […]
Allied Pilots Association hit by ransomware
The Allied Pilots Association (APA) is the labor union representing American Airlines pilots. The following is a cybersecurity update on their site dated November 2: On October 30, we experienced a cybersecurity incident. Upon discovery of the incident, we immediately took steps to secure our network. Our IT team, with the support of outside experts, […]
Boeing confirms cyberattack amid LockBit ransomware claims
Bleeping Computer reports: Aerospace giant Boeing is investigating a cyberattack that impacted its parts and distribution business after the LockBit ransomware gang claimed that they breached the company’s network and stole data. Boeing says the incident did not impact flight safety and confirmed collaboration with law enforcement and regulatory agencies as part of an ongoing […]
Daixin Team claims responsibility for attacks affecting five Canadian hospitals
Supply chain attacks continue to pose a major threat to the security of sensitive data and critical systems. Five hospitals in Ontario, Canada have been struggling to function this month after a ransomware group hit their IT and services provider. DataBreaches.net broke the news when the Daixin Team revealed that they were responsible for the […]
Town of Iowa hit by ransomware, files leaked
Towns across America continue to fall prey to ransomware gangs. This week, the SuspectFile blog reported on how the AlphV gang, also known as “BlackCat,” started leaking files from the Town of Iowa in Louisiana: The ransomware group ALPHV (BlackCat) has published a first part of exfiltrated data from the Town of Iowa in the […]