As some districts learn that the stolen data is still in the hands of criminals, it is not yet clear whether it is the same threat actor or not, although most people are betting it is the same criminal who had promised to delete all the data. When hackers managed to acquire tens of millions […]
The Law Society Gazette in the UK reports: The Ministry of Justice has revealed it is working with the National Crime Agency and National Cyber Security Centre to investigate a data breach at the Legal Aid Agency. According to Sky News, the LAA told law firms in a letter last week that it identified a ‘security incident’. […]
404 Media reports: Hackers have targeted GlobalX Air, one of the main airlines the Trump administration is using as part of its deportation efforts, and stolen what they say are flight records and passenger manifests of all of its flights, including those for deportation, 404 Media has learned. The data, which the hackers contacted 404 […]
The Independent reports: Hackers who targeted Marks & Spencer and the Co-op tricked IT workers to gain access into their companies systems, according to a report. The “social engineering” attack on the Co-op allowed cybercriminals to reset an employee’s password before breaching the network, with a similar tactic used against M&S, sources revealed to BleepingComputer website. Hundreds of agency workers […]
Bleeping Computer reports: The data-theft extortion group known as Luna Moth, aka Silent Ransom Group, has ramped up callback phishing campaigns in attacks on legal and financial institutions in the United States. According to EclecticIQ researcher Arda Büyükkaya, the ultimate goal of these attacks is data theft and extortion. Luna Moth, known internally as Silent […]
404 Media reports: A hacker has breached and stolen customer data from TeleMessage, an obscure Israeli company that sells modified versions of Signal and other messaging apps to the U.S. government to archive messages, 404 Media has learned. The data stolen by the hacker contains the contents of some direct messages and group chats sent using its […]
News18 reports: In a major cyber attack on the Jammu Municipal Corporation website on Friday, critical data was stolen by hackers, top intelligence sources said. All certificates and databases, likely containing citizen data like Aadhaar numbers, property records, tax details and administrative documents, and infrastructure plans, were reportedly lost in the data breach incident, sources […]
May 1, 2025. A press release from the U.S. Attorney’s Office for the Central District of California: LOS ANGELES – A Yemeni national was charged today in a three-count federal grand jury indictment alleging he deployed the so-called “Black Kingdom” ransomware against computer servers owned organizations worldwide, including businesses, schools, and hospitals in the United States, […]
Someone’s hitting big UK retail firms. First it was M&S, then Co-Op, and now it’s Harrod’s. BBC reports: The luxury department store Harrods says it is the latest retailer to have been targeted by a cyber attack. The firm said it had “restricted internet access at our sites” following an attempt to gain access to […]
Defending Against UNC3944/Scattered Spider: Cybercrime Hardening Guidance from the Frontlines – Mandiant
Background UNC3944, which overlaps with public reporting on Scattered Spider, is a financially-motivated threat actor characterized by its persistent use of social engineering and brazen communications with victims. In early operations, UNC3944 largely targeted telecommunications-related organizations to support SIM swap operations. However, after shifting to ransomware and data theft extortion in early 2023, they impacted […]