BianLian, previously known as a ransomware gang but more recently known for not bothering with encryption but just hacking and exfiltrating data, has reportedly attacked Save the Children, a well-known non-profit. While BianLian did not name the charity (they obfuscate their victims’ names while they are still hoping to get paid), their description of the […]
Hotel and casino operator MGM Resorts is dealing with a cyberattack that has somewhat sent it back into the digital dark ages at multiple properties and locations. On September 11, MGM Resorts posted a statement on its Twitter account confirming that it was dealing with what it described as a cybersecurity incident. They did not […]
The MOVEit data breach, discussed in an earlier post, continues to make headlines. As SDX reports: Orchestrated by ransomware gang CL0P exploiting a zero-day vulnerability, it is now considered one of the largest hacks of 2023 — and potentially in recent history. To date, it is known to have impacted more than 1,150 organizations and nearly 56 million individuals, […]
Rhysida has now added Singing River Health System in Mississippi to their dark web leak site. The health system, which includes Pascagoula Hospital, Ocean Springs Hospital, and Gulfport Hospital as well as 10 clinics discovered the ransomware attack on August 19. In its most recent update of August 31, it stated: “We understand the concerns […]
The U.S. government is struggling to convince hospitals that they need to spend time and money fighting hackers and provide useful advice to them, a problem that could have lethal consequences as the country’s ransomware crisis rages on. “I don’t think we’ve figured out how to talk to the small and medium-sized organizations in a […]
Vivendi Ticketing US d/b/a See Tickets is notifying 323,498 consumers of a data security incident that compromised consumers’ payment card information. In a notification letter being sent this week, the ticket broker states that in May, they became aware of unusual activity on some of their e-commerce sites. Forensic specialists determined that unauthorized individuals had […]
The Cuba ransomware gang, who are thought to be in Russia, have changed things up a bit and recently attacked U.S. critical infrastructure — something most gangs have avoided after DarkSide attacked Colonial Pipeline in 2021. Read more of this article at BlackBerry.
In other defense-related news, U.S. intelligence agencies have issued a warning about foreign spies targeting the American space industry as well as cyberattacks against the nation’s satellite infrastructure. Read more of this article by Brett Tingley at Space.com.
A supply-chain attack that has hit about 100 victims has been linked to a previously unidentified hacking group called “Carderbee. Read more of this article at Threat Intelligence.
Some Insights From IBM’s Cost of a Data Breach Report
Joe Lazzarotti at The Workplace Privacy, Data Management & Security Report calls our attention to some interesting findings in IBM’s annual Cost of a Data Breach Report. Some of these will not surprise you, but some may: Read more details on Workplace Privacy, Data Management & Security Report.