Malware Ransomware, News
January 16, 2025
827 views 6 mins 0

Justice Department and FBI Conduct International Operation to Delete Malware Used by China-Backed Hackers

Court-Authorized Operation Removes PlugX Malware from Over 4,200 Infected U.S. Computers Note: View the affidavit here. The Justice Department and FBI today announced a multi-month law enforcement operation that, alongside international partners, deleted “PlugX” malware from thousands of infected computers worldwide. As described in court documents unsealed in the Eastern District of Pennsylvania, a group of […]

Vulnerabilities, News
January 13, 2025
259 views 52 secs 0

Researcher Uncovers AWS S3 Ransomware Vulnerabilities

As if there weren’t enough concerns with misconfigured Amazon AWS s3 buckets exposing data, now we read this: Security researchers at Rhino Security Labs have uncovered a concerning vulnerability in Amazon Web Services (AWS) S3 storage systems that could allow attackers to execute ransomware attacks against cloud-stored data.  The research demonstrates how attackers can encrypt S3 bucket […]

Data Breach News, News
January 12, 2025
839 views 2 mins 0

FAQs for Schools and Persons Affected By the PowerSchool Data Breach

Joseph Lazzarotti of the Jackson Lewis law firm has some helpful advice for schools affected by the PowerSchool breach. Here are a few snippets: State breach notification laws generally place the obligation to notify affected persons and others on the owner of the personal information compromised in the breach, not the service provider that had […]

Cyberattack, Critical Infrastructure, Data Breach News, News
January 11, 2025
817 views 2 secs 0

Japan links Chinese hacker MirrorFace to dozens of cyberattacks targeting security and tech data

The Associated Press reports: Japan on Wednesday linked more than 200 cyberattacks over the past five years targeting the country’s national security and high technology data to a Chinese hacking group, MirrorFace, detailing their tactics and calling on government agencies and businesses to reinforce preventive measures. The National Police Agency said its analysis on the […]

Data Breach News, News
January 09, 2025
849 views 2 mins 0

Hackers Claim Massive Breach of Location Data Giant, Threaten to Leak Data

Last month, the Federal Trade Commission announced that it was taking action against Gravy Analytics Inc. and its subsidiary Venntel Inc. for unlawfully tracking and selling sensitive location data from users, including selling data about consumers’ visits to health-related locations and places of worship. Under a proposed order, Gravy Analytics and Venntel will be prohibited from […]

Cyberattack, Data Breach News, News
January 09, 2025
862 views 47 secs 0

Russian ISP confirms Ukrainian hackers “destroyed” its network

Bleeping Computer reports: ​Ukrainian hacktivists, part of the Ukrainian Cyber Alliance group, announced on Tuesday they had breached Russian internet service provider Nodex’s network and wiped hacked systems after stealing sensitive documents. “The Russian internet provider Nodex in St. Petersburg was completely looted and wiped. Data exfiltrated, while the empty equipment without backups was left […]

News, Data Breach News
January 06, 2025
1274 views 6 mins 0

Washington AG Ferguson files lawsuit against T-Mobile for massive data breach

In September 2024, T-Mobile settled Federal Communications Commission charges stemming from four data breaches. Details of the four breaches, including a 2021 incident, were included in the consent decree. To settle the FCC’s investigations, T-Mobile agreed to pay a civil penalty of $15,750,000 andcommitted to spending an additional $15,750,000 over the next two years to […]