Some ransomware groups pledge not to encrypt any medical entity if doing so would risk life. Not all ransomware groups have taken that pledge, however, and even some that claim they will not encrypt, do. Scripps News reports a ransomware attack is affecting blood availability to hospitals throughout the southeast U.S.: A nonprofit blood donation […]
Another ransomware attack on a government agency shuts down services. The Los Angeles Times reports: The Los Angeles County Superior Court, the biggest trial court in the country, remained closed Monday as it sought to recover from a ransomware attack on its systems, officials said. The attack was detected Friday and doesn’t appear to be […]
While the widespread outage due to a CrowdStrike update glitch was not a cyberattack, criminals quickly acted to take advantage of it, using phishing attacks. CISA has been posting updates. The most recent was yesterday evening. Check for later updates at CISA.gov. CrowdStrike’s most recent update on Falcon Content Update for Windows Hosts was early […]
It’s been a rough time for federal agencies. First the Supreme Court undid 40 years of Chevron deference. Now a federal judge has gutted the Security and Exchange Commission’s lawsuit against SolarWinds. Reuters reports: A U.S. judge dismissed most of a Securities and Exchange Commission lawsuit accusing software company SolarWinds (SWI.N), opens new tab of defrauding investors […]
“What will it take for victims of ransomware, extortion and other types of cybercrime to stop directly funding their attackers?” That’s the great question posed by BankInfoSecurity after WIRED reported AT&T paid hackers $370,000 to delete the data they had stolen. BankinfoSecurity reports: How many of the approximately 165 victims of the campaign targeting Snowflake […]
TechCrunch reports on another big breach related to the Snowflake incident: U.S. phone giant AT&T confirmed Friday it will begin notifying millions of consumers about a fresh data breach that allowed cybercriminals to steal the phone records of “nearly all” of its customers, a company spokesperson told TechCrunch. In a statement, AT&T said that the […]
by Craig Silverman, ProPublica ProPublica is a Pulitzer Prize-winning investigative newsroom. Sign up for The Big Story newsletter to receive stories like this one in your inbox. This story was originally published on ProPublica. Series: Zero Trust:Inside Microsoft’s Cybersecurity Failures Investigating how the world’s largest software provider handles the security of its own ubiquitous products. […]
It seems that those involved in hacking Snowflake customers like Ticketmaster took a second look at the data they acquired, did a little happy dance, and upped their extortion demands. They may have danced too soon. Bleeping Computer reports: Hackers have leaked what they claim is Ticketmaster barcode data for 166,000 Taylor Swift Eras Tour […]
HackRead reports that ShinyHunters has claimed responsibility for attacks on Twilio Authy, Neiman Marcus, and Truist Bank and has leaked data from all three. The infamous ShinyHunters hacking group, known for their recent Ticketmaster data breach, has struck again with a series of new attacks. This time, they have targeted Neiman Marcus, a renowned American luxury […]
Cost of a data breach up 10% to almost $5 million — IBM report
IBM’s new cost of a data breach report is out, and the numbers are not encouraging. By the numbers: $4.88 million — The global average cost of a data breach in 2024—a 10% increase over last year and the highest total ever. The highest average cost was $9.77 million for the healthcare sector. The industrial sector […]