LATEST POST
Australian ransomware victims now must tell the government if they pay up
The Record reports: Australia became on Friday the first country in the world to require victims of ransomware attacks to declare to the government any extortion payments made on their behalf to cybercriminals. The law, initially proposed last year, only applies to organizations with an annual turnover greater than AUS $3 million ($1.93 million) alongside a smaller […]
US medical org pays $50M+ to settle case after crims raided data and threatened to swat cancer patients
The Register reports: A Seattle cancer facility has agreed to fork out around $52.5 million as part of a class action settlement linked to a Thanksgiving 2023 cyberattack where criminals directly threatened cancer patients with swat attacks. The Fred Hutchinson Cancer Center (Fred Hutch) disclosed its November 2023 attack a month later, after it confirmed […]
ConnectWise says nation-state attack targeted multiple ScreenConnect customers
‘ConnectWise recently learned of suspicious activity within our environment that we believe was tied to a sophisticated nation state actor, which affected a very small number of ScreenConnect customers‘ — ConnectWise statement The Record reports: IT management software company ConnectWise said it is investigating a nation-state attack on its systems that impacted some of its […]
Russian hackers attacked the UK Ministry of Defense under the guise of journalists
LIGA reports: Russian hacking group RomCom attempted to hack into the accounts of employees of the UK Ministry of Defence under the guise of journalists. The attack was unsuccessful, but overall, there have been twice as many hacking attacks on the country’s defence department in the past two years as in the previous similar period, […]
Canada’s federal privacy czar starts probe into theft of customer data from Nova Scotia Power
The Canadian Press reports: The federal privacy commissioner has launched an investigation into a ransomware attack that led to the theft of personal information belonging to 280,000 customers of Nova Scotia’s electric utility. Privately owned Nova Scotia Power confirmed last week that hackers stole the data and published it on the dark web. Privacy commissioner […]
LexisNexis breach: Data broker hack exposed trove of sensitive information, including Social Security numbers
Personal information on more than 364,000 people may have been compromised as part of a third-party hack. Fast Company reports: Data analytics firm LexisNexis Risk Solutions said it suffered a data breach that could have affected the names, Social Security numbers, driver’s license numbers, and contact information of more than 364,000 people. The company said […]
Banks Want SEC to Rescind Cyberattack Disclosure Requirements
PYMNTS reports: American banking groups want the Securities and Exchange Commission (SEC) to revoke its cybersecurity incident disclosure requirements. These groups, led by the American Bankers Association (ABA), wrote to the SEC last week, contending that disclosing cybersecurity incidents “directly conflicts with confidential reporting requirements intended to protect critical infrastructure and warn potential victims.” Joining the ABA were the Securities Industry […]
Mainland China accuses Taiwan of backing cyberattacks on 1,000 sensitive targets
China has accused a hacker group they allege is backed by Taiwan’s ruling Democratic Progressive Party of orchestrating cyberattacks on up to 1,000 sensitive mainland networks The South China Morning Post reports: The claim was made public on May 20 by the Guangzhou city police, who said the group used “rudimentary and crude” methods to launch widespread attacks from […]