LATEST POST
American Express Credit Card Data Exposed in Third-Party Breach
DarkReading reports: American Express is notifying its customers that their credit cards were exposed in a breach involving a third-party service provider. In a data breach notification filed with the state of Massachusetts, the American bank holding and financial services company notes that its own systems were not compromised by the incident. The breach instead occurred through […]
CryptoChameleon Phishing Scam Targets Crypto Users and FCC Employees
So far, the CryptoChameleon phishing scam has successfully phished over 100 victims, with many still active. Lookout has discovered a multi-pronged phishing campaign, dubbed “CryptoChameleon,” that mimics legitimate login pages for cryptocurrency platforms and the Federal Communications Commission (FCC) via mobile devices. The kit uses carbon copies of SSO pages and phishing via email, SMS, and […]
LockBit claims to have been paid ransom by Fulton County, Georgia. No way, says the county.
When law enforcement from the U.K.’s National Crime Agency, the FBI, and others in “Operation Cronos” disrupted LockBit3.0’s ransomware operations and seized 34 of their servers, it was understandably big news. Within days, however, LockBit had set up new infrastructure and listed some victims. They also issued a response to the FBI that claimed that […]
Change Healthcare ransomware attack continues to cause major problems for patients and providers
The attack on United Healthcare’s Change Healthcare unit continues to cause major problems. Pharmacies are struggling to fill prescriptions, patients cannot get their medications, and payment processes for providers are impacted. The problems began February 21 after hackers, subsequently identified as the AlphV (BlackCat) group, gained access to UnitedHealth’s Change Healthcare unit. How they gained […]
loanDepot notifying 17 million customers after ransomware attack in January
DataBreaches.net reports: On February 16, BlackCat added loanDepot to their dark web leak site, but without any data as proof. At the time, they claimed that LoanDepot had shown up in the negotiation chat, and had offered $6 million for the data and a decryptor, but allegedly claimed they could offer more after the weekend. […]
If you’re thinking of paying a ransom demand, think again.
For years now, law enforcement has been urging victims of ransomware attacks not to pay ransom. Their explanations are simple: (1) criminals do not keep their word to delete any data they have stolen from you, (2) criminals will not keep their word not to attack you again, and (3) paying criminals encourages them to […]
An attack on Optum Solutions/Change Healthcare has the healthcare sector worried (1)
HHS generally does not rush to issue any notice about a cyberattack, but today, they issued a quick one about Change Healthcare: U.S. Department of Health and Human Services (HHS) is aware that a cyber incident was identified in Optum Insight’s Change Healthcare’s technology systems on February 21. HHS is working closely with Optum Insight […]
A hacker just called your office. Do your front-line personnel know what to say or do?
Regardless of whether you work for a big corporation or a small- or medium-sized business, you need to have a plan as to how you will respond in the event of a data security incident. Many plans begin with what to do once you discover a breach, but do not neglect to ensure you have […]