Data Breach News, News
January 17, 2025
2 views 2 mins 0

Blue Yonder investigating Clop gang’s threat linked to exploited Cleo CVEs

The Cl0p gang that previously successfully attacked file transfer software platforms by exploiting zero-day vulnerabilities is now starting to leak data from yet another campaign targeting file transfer software. This time, it’s CLEO. Cybersecurity Dive reports: Blue Yonder said it is investigating a threat after Clop listed the supply chain management company among nearly 60 […]

Vulnerabilities, Data Breach News
January 16, 2025
7 views 17 secs 0

Hacking group leaks Fortinet users’ details on dark web

Details from more than 15,000 devices exposed If you use Fortinet, Computing.co.uk has information that you need to know: Hackers calling themselves Belsen Group have leaked details of users of Fortinet firewalls on the dark web. Researcher Kevin Beaumont, who has reviewed the data dump, says he believes it to be genuine, since devices in […]

Legal News, Data Breach News, Malware Ransomware
January 15, 2025
11 views 3 mins 0

UK government plans to prohibit government and public sector entities from paying ransomware demands

Governments have routinely urged ransomware victims not to pay ransom demands, as it only encourages them to attack even more victims. Now the UK government may prohibit government and public sector entities from paying. LBC reports: Security minister Dan Jarvis told LBC: “We want these cyber criminals who operate from Russia and elsewhere to look […]

Data Breach News, News
January 12, 2025
28 views 2 mins 0

FAQs for Schools and Persons Affected By the PowerSchool Data Breach

Joseph Lazzarotti of the Jackson Lewis law firm has some helpful advice for schools affected by the PowerSchool breach. Here are a few snippets: State breach notification laws generally place the obligation to notify affected persons and others on the owner of the personal information compromised in the breach, not the service provider that had […]

Cyberattack, Critical Infrastructure, Data Breach News, News
January 11, 2025
20 views 2 secs 0

Japan links Chinese hacker MirrorFace to dozens of cyberattacks targeting security and tech data

The Associated Press reports: Japan on Wednesday linked more than 200 cyberattacks over the past five years targeting the country’s national security and high technology data to a Chinese hacking group, MirrorFace, detailing their tactics and calling on government agencies and businesses to reinforce preventive measures. The National Police Agency said its analysis on the […]

Legal News, Data Breach News
January 10, 2025
41 views 2 mins 0

PowerSchool Sued Over December Breach of Student, Teacher Data

24 hours. That’s the gap between PowerSchool’s disclosure of a hacking incident affecting teacher and student data and the filing of the first potential class-action lawsuit. Bloomberg Law reports on three potential class-action lawsuits that were filed on January 8th and 9th against the provider of cloud-based education software for K-12 schools: The complaints bring […]

Data Breach News
January 10, 2025
39 views 14 mins 0

RIBridges has many lines of defense. How was the system breached?

This article by Alexander Castro originally appeared in Rhode Island Current on January 10, 2025 and is republished here under Creative Commons License. Rhode Island’s online public benefits system appears to be a fortress with many defenses, including 15 different kinds of security and monitoring software, state documentation shows.    Despite those shields, a glut of […]