Radio New Zealand reports that a “malicious actor” accessed and downloaded private information about staff in districts in the lower North Island,” according to Health NZ: In a message that has gone out to staff today, the agency said it had reported the incident to police and would be publishing a “public privacy notification” for staff at […]
BankInfoSecurity reports: An apparent Chinese cyberespionage operation lurked inside the network of an Asian telecom for four years, camouflaging its presence through nested encryption and lightweight web shells. Incident response firm Sygnia has uncovered the operation, dubbing the threat actor “Weaver Ant.” It exhibits several characteristics of a Chinese nation-state threat actor, including a wide reliance on […]
MSN reports: Cybercrime detectives are investigating a “major data breach” of the NSW court’s website involving the leaking of 9000 sensitive court documents, including apprehended violence orders [AVO]. The breach, which was discovered on Tuesday and referred to the State Crime Command’s Cybercrime Squad, impacted the NSW Online Registry Website, an online platform which provides […]
The Washington Post reports: If you’re one of the 15 million people who shared your DNA with 23andMe, it’s time to delete your data. The genetic information company, best known for its saliva test kits, announced Sunday that it is headed to bankruptcy court to sell its assets. And 23andMe’s financial distress prompted California Attorney General Rob […]
Unbelievable. And this wasn’t a one-time human error. It went on over time. Jeffrey Goldberg of The Atlantic reports: The world found out shortly before 2 p.m. eastern time on March 15 that the United States was bombing Houthi targets across Yemen. I, however, knew two hours before the first bombs exploded that the attack […]
The Register reports: Beleaguered DNA testing biz 23andMe – hit by a massive cyber attack in 2023 – is filing for bankruptcy protection in the US following years of financial uncertainty. It said that Chapter 11 proceedings were initiated in the US Bankruptcy Court for the Eastern District of Missouri on Sunday, and the court will oversee […]
BleepingComputer reports: Researchers have determined that Coinbase was the primary target in a recent GitHub Actions cascading supply chain attack that compromised secrets in hundreds of repositories. According to new reports from Palo Alto Unit 42 and Wiz, the attack was carefully planned and began when malicious code was injected into reviewdog/action-setup@v1 GitHub Action. It is unclear how the breach […]
BleepingComputer reports: Oracle denies it was breached after a threat actor claimed to be selling 6 million data records allegedly stolen from the company’s Oracle Cloud federated SSO login servers. “There has been no breach of Oracle Cloud. The published credentials are not for the Oracle Cloud. No Oracle Cloud customers experienced a breach or […]
Marine Insight reports: A hacker group, Lab Dookhtegan, has claimed to have targeted 116 Iranian ships belonging to two major Iranian companies and disrupting their communication networks. The Group wrote on Telegram that the companies were involved in several illegal activities and supplied munitions to the Houthis. The cyber attack was carried out to coincide […]
Top Class Actions reports: National Student Clearinghouse agreed to a $9.95 million class action lawsuit settlement to resolve claims that it failed to protect consumers from a 2023 MOVEit data breach. The National Student Clearinghouse settlement benefits individuals whose Social Security numbers were included in the files affected by the MOVEit data breach between May […]
