Tag: Industry News – HOTforSecurity

Read the original article: One month after ransomware attack, Metro Vancouver’s transit system still not up to speed TransLink confirms attack saw hackers access staff payroll details Egregor ransomware spat ransom demands out of hijacked printers According to media reports,…

Read more →

Read the original article: Finnish Parliament Was Targeted in Cyberattack in 2020 The Parliament of Finland has found out that it was the victim of a cyberattack in the fall of 2020, but it was only discovered recently by the…

Read more →

Read the original article: Cyberattacks Against K-12 Schools Expected to Rise in 2021, FBI Warns With students returning to online classrooms after the holidays, the Federal Bureau of Investigation (FBI) expects a proliferation of cyber threats targeting K-12 schools and…

Read more →

Read the original article: Nefilim Hits Whirlpool with Ransomware, Publishes Some Stolen Data Whirlpool reported that it found ransomware in its systems, saying that no customer information was leaked and it encountered no operational difficulties. The ransomware gang that attacked…

Read more →

Read the original article: Ticketmaster Fined $10 Million after Accessing Competitor’s Network using Stolen Credentials The US-based ticket sales and distribution company, Ticketmaster, will pay a $10 million fine for illegally accessing a competitor’s computer system using stolen credentials, the…

Read more →

Read the original article: Emotet Returns with Updated Modules and New Campaign The Emotet malware is back after a hiatus of a couple of months, according to new research. The malware is now using updated payloads the operators implemented to…

Read more →

Read the original article: Microsoft Issued a Fix for Zero-Day Six Months Ago but It Didn’t Work Microsoft fixed a zero-day vulnerability in June 2020, but the company did a poor job. Security researchers from Google’s Project Zero showed that…

Read more →

Read the original article: Bike Maker Kawasaki Confirms Security Breach, Says Hackers Used Advanced Tech to Erase Their Tracks Motorcycle maker Kawasaki has issued a statement saying it suffered a breach earlier this year that may have compromised “information from…

Read more →

Read the original article: Sangoma Technologies Confirms Data Breach as Result of Ransomware Attack Sangoma Technologies, a household name in the communications-as-a-service (CaaS) market, has confirmed it suffered a ransomware attack that led to a data breach. On Christmas eve,…

Read more →

Read the original article: DOJ Officials Shut Down Spoofed Domains of Moderna and Regeneron The Maryland US Attorney’s Office announced the seizure of a couple of domain names that imitated the name and design of the official websites of Moderna…

Read more →

Read the original article: Nintendo Went Mission-Impossible on Homebrew Hacker in 2013, Alleged Leaked Documents Show Nintendo will apparently go to great lengths to keep hackers from messing with its gaming gear, according to an alleged internal leak. The files…

Read more →

Read the original article: Attackers Use Mobile Emulators on an Unprecedented Scale to Steal Millions of Dollars in a Few Days Attackers set up a network of mobile emulators capable of spoofing devices of real banking customers from the United…

Read more →

Read the original article: Police bring down “bulletproof” VPN services beloved by cybercriminals Operation Nova brings down VPN services “intentionally designed for criminal activity” Customers warned that international law enforcement continues to investigate who might have used seized services for…

Read more →

Read the original article: DHS Warns that Businesses Sourcing Data Services and Equipment from China May Face Legal Repercussions The US Department of Homeland Security (DHS) this week issued an advisory warning American businesses of cybersecurity risks associated with data…

Read more →

Read the original article: Firefox 85 to Bring Full Network Partitioning to Block Most User Tracking Efforts Mozilla is preparing to launch a major privacy feature, named network partitioning, with Firefox 85 that’s scheduled for release in January, to reduce…

Read more →

Read the original article: Phishing Campaign Uses New York Department of Labor Logo and Pandemic Aid Info to Steal Private Information Security researchers have identified a new phishing campaign using a message purportedly from the New York Department of Labor…

Read more →

Read the original article: Hacker publishes stolen email and mailing addresses of 270,000 Ledger cryptocurrency wallet users Details of Ledger hardware wallet customers provides golden opportunity for scammers Scams include threats to break into homes of customers if ransom is…

Read more →

Read the original article: Thousands of Student Records Remain Unrecoverable after Baltimore County Public Schools Ransomware Attack The aftermath of the cyberattack that forced Baltimore Public Schools (BCPS) to cancel remote classes before Thanksgiving holiday is still unraveling, as school…

Read more →

Read the original article: Spotify Hit by Yet Another Data Leak Spotify is now dealing with a third security incident in the span of a couple of months after account registration data was mistakenly exposed to some of the company’s…

Read more →

Read the original article: Ransomware attackers are making threatening phone calls to their victims, warns FBI DoppelPaymer ransomware victims are being called by hackers, post-infection Family members have also been called, as threats are made to visit victims’ homes It’s…

Read more →

Read the original article: Dutch Hacker Who Allegedly Broke into Trump’s Twitter Account Walks Free Victor Gevers, the ethical hacker who earlier this year claimed to have broken into President Trump’s Twitter account, will not be punished, a Dutch prosecutor…

Read more →

Read the original article: Leaky Databases Expose over 45 Million Medical Images and Patient Data Unsecured servers and medical devices around the world are leaking over 45 million medical imaging files and associated healthcare data, according to researchers. A six-month…

Read more →

Read the original article: Twitter Fined €450,000 Under GDPR Over ‘Protected’ Settings Bug A bug in Twitter for Android discovered in late 2018 has come back to bite the microblogging company in the form of a hefty fine from the…

Read more →

Read the original article: New Ransomware MountLocker Uses Extortion and Data Exfiltration Security researchers have identified a new piece of ransomware named MountLocker specializing in infection and data exfiltration, following the trend set in 2020 by similar threats. MountLocker is…

Read more →

Read the original article: FTC and Law Enforcement Agencies Partner up against Fraudulent Income Schemes Targeting Consumers The Federal Trade Commission (FTC), in partnership with 19 law enforcement agencies, recently disclosed a nationwide clampdown on fraudulent income schemes, including fake…

Read more →

Read the original article: Cruise line operator Hurtigruten crippled in ransomware attack IT systems worldwide said to be affected Business, already suffering during pandemic, now has a cyber attack to contend with Norwegian shipping and cruise line Hurtigruten has revealed…

Read more →

Read the original article: FBI and CISA Warn of Increased Malicious Attacks against K-12 Schools A recent cybersecurity advisory released by the FBI, CISA and Multi-State Information Sharing and Analysis Center (MS-ISAC) warns of increased cyber threats targeting K-12 schools…

Read more →

Read the original article: Alabama School District to Replace Student and Teacher Devices after Ransomware Attack The Huntsville City Schools district in Alabama hasn’t fully recovered from a ransomware attack that disrupted its IT network on November 30. After confirming…

Read more →

Read the original article: Hackers Hit Baltimore Yet Again – Ransomware Temporarily Freezes Systems at Major Medical Center Less than two weeks after an attack on Baltimore County Public Schools, one of the city’s major medical centers has been struck…

Read more →

Read the original article: Ohio Medical Practice Fires Employee Over Patient Privacy Breach A healthcare provider based in the US state of Ohio has released a statement saying it fired an employee for snooping in on patients’ records, showing transparency…

Read more →

Read the original article: PlayStation Now Fixes Vulnerability That Allowed Attackers to Run RCE on Windows PCs A critical flaw in the PlayStation Now cloud application could have let attackers inject malicious code on Windows-operating devices. The vulnerability was reported…

Read more →

Read the original article: Foxconn hit with record-breaking $34 million ransom demand after cyber attack Electronics manufacturer Foxconn was infected with the DoppelPaymer ransomware last month Hacking group has begun to publish files stolen from company’s servers during the attack…

Read more →

Read the original article: Israel shaken by data leak after ransomware attack at Shirbit insurance company Hackers leak screenshot of negotiation with breached insurance giant Israeli government reportedly reconsidering relationship with insurance firm following security breach A hacking gang calling…

Read more →

Read the original article: Data Breach at Alaskan Online Voter Registration System Exposes Personal Info of Over 100,000 Voters A cyberattack on the Online Voter Registration System of the state of Alaska exposed the personal information of 113,000 potential voters,…

Read more →

Read the original article: Italian Police Arrest Criminals Accused of Robbing ATMs with Purpose-Built Black Boxes Italian Police identified 12 people allegedly responsible for numerous ATM jackpotting attacks in multiple provinces, putting an end to a criminal operation that lasted…

Read more →

Read the original article: Verizon Leaks Customer Conversations, Personal Data Through Flawed Chat Window on Its Website The American telco Verizon has been found leaking customers’ information, potentially for months, due to a flaw in a chat system on its…

Read more →

Read the original article: Nintendo Hacker Sentenced to Three Years in Prison A California resident who hacked Nintendo when he was a minor has been sentenced to serve three years in prison, followed by seven years of supervised release. Ryan…

Read more →

Read the original article: Ransomware Operators Phone Victims to Announce They’ve Been Hacked A dental practice in the US state of Georgia has learned its systems were infected with ransomware only after the attackers rang them up to clue them…

Read more →

Read the original article: Metro Vancouver TransLink hit by Egregor ransomware attack, travellers disrupted Printers at TransLink churn out ransom demand from attackers Passengers were unable to use credit cards for travel payment Passengers on Vancouver’s transit system were unable…

Read more →

Read the original article: Cyber Criminals Tried to Gain Access to COVID-19 Vaccine ‘Cold Chain’ The COVID ‘cold chain’ is now under attack, likely a nation state, although the identity of the threat actors remains unknown for now, according to…

Read more →

Read the original article: 422 Individuals Arrested in Global Money Laundering Scheme, According to Europol More than 400 people have been arrested following a three-month global investigation into money laundering schemes, Europol disclosed today. The European Money Mule Action ‘EMMA…

Read more →

Read the original article: Indian Telefraud Boss Gets 20 Years Behind Bars The US Department of Justice has announced the sentencing of an Indian national for masterminding several India-based call centers that defrauded US victims out of millions of dollars…

Read more →

Read the original article: Cyber Attack at US Mental Health Services Provider Exposes Sensitive Info of Over 290,000 Individuals Attackers stole protected health information (PHI) and personally identifiable information (PII) of 295,617 patients of Colorado Springs-based mental healthcare provider AspenPointe in…

Read more →

Read the original article: Conti ransomware attack demands $14 million from industrial IoT firm Advantech Ransomware encrypts internal network, and data stolen 2% of stolen data published by attackers on dark web The world’s largest maker of industrial computers, Taiwan’s…

Read more →

Read the original article: COVID Vaccine Maker AstraZeneca Targeted by Alleged North Korean Hackers Reuters today is running a story saying “suspected” North Korean hackers have targeted employees at British drugmaker AstraZeneca in an attempt to infect their computers with…

Read more →

Read the original article: Fertility Patients’ Sensitive Personal Information Stolen During Ransomware Attack US Fertility network took two months to go public about attack. Health information of patients may be at risk. Fertility clinics across the United States have been…

Read more →

Read the original article: Home Depot Hiring Security Chief Six Years After Major Security Incident Home Depot has agreed to pay $17.5 million as part of a multistate lawsuit settlement following a cyber incident that occurred six years ago. As…

Read more →

Read the original article: FBI Warns of Spoofed Domains Imitating their Website Cyber actors have spoofed legitimate FBI websites in an effort to trick people, possibly by disseminating false information or gathering credentials, according to an FBI advisory. Spoofing official…

Read more →

Read the original article: Over 300,000 Spotify Accounts Compromised in Credential-Stuffing Attack An Elasticsearch database with over 380 million records, including login credentials, was used to target Spotify accounts, according to vpnMentor researchers. Although the origin and owners of the…

Read more →

Read the original article: Manchester United Calls in Experts to Investigate Targeted Cyber-Attack on Its Systems Manchester United played West Bromwich Albion as scheduled on Saturday, despite a recent cyber-attack on United, officials said. The football club has enlisted the…

Read more →

Read the original article: Bug in Facebook Messenger on Android Let Attackers Start Calls and Listen to Audio A Google Zero security researcher discovered a Facebook Messenger bug that allowed attackers to initiate a call and begin listening as soon…

Read more →

Read the original article: Mercy Iowa City Discloses Highly Sensitive Data Breach Impacting Over 60,000 Iowans Mercy Iowa City hospital has revealed a data breach that may have compromised the personal and health information of 60,473 patients. According to a…

Read more →

Read the original article: Critical Webex Bugs Let ‘Ghost’ Users Spy on Meetings Researchers have discovered three dangerous security flaws in CISCO’s popular video conferencing tool, Webex. In the researchers’ words, the flaws can allow anyone to become a ‘ghost,’…

Read more →

Read the original article: Zoom Releases Security Features to Fend off Zoom Bombers and Disruptive Participants Popular video-conferencing app Zoom has introduced two new security features, allowing hosts to remove unwanted participants and alerting them if meetings have been leaked…

Read more →

Read the original article: Capcom Ransomware Attack Compromised Personal Information of 350,000 Individuals A ransomware attack that hit online game developer Capcom on November 2 has revealed a data breach affecting roughly 350,000 individuals. Although the preliminary report of the…

Read more →

Read the original article: DarkSide Ransomware Operators Plan to Open Distributed Storage System for Stolen Files The ransomware gang known as DarkSide has announced plans to offer a distributed storage platform for affiliates. The plan is to make it harder…

Read more →

Read the original article: Hundreds of Thousands of SMBGhost and BlueKeep Infected Systems Are Still Up and Running Despite the existence of patches that fix serious vulnerabilities such as SMBGhost and BlueKeep, hundreds of thousands of active devices running right…

Read more →

Read the original article: Hackers Steal 46 Million Animal Jam Account Records, Dating Back 10 Years Hackers circulate database containing millions of players’ details Wildly-popular online game impresses with its response to data breach Don’t worry if you haven’t heard…

Read more →

Read the original article: State Actors Attack COVID-19 Research Efforts, Microsoft Says Nations-state actors continue to launch cyberattacks against seven prominent companies directly involved in researching vaccines and treatments for Covid-19, according to new research revealed by Microsoft. Since the…

Read more →

Read the original article: Cryptocurrency Service Proposes Bug Bounty to Attacker Who Stole $2 Million Decentralized finance (DeFI) protocol Akropolis lost $2 million in DAI in a flash-loan attack last Thursday. According to the cryptocurrency lending and savings service, a…

Read more →

Read the original article: Printers Spit Out Egregor Ransom Notes at Cencosud Retail Stores in Latin America Cencosud, the largest retail company in Chile and the third-largest listed retailer in Latin America, was hit by Egregor ransomware operators over the…

Read more →

Read the original article: The North Face Disables Shopper Account Passwords after Credential-Stuffing Attack A credential-stuffing attack on The North Face has forced the US-based outdoor retailer to disable the account passwords of an undisclosed number of online customers. According…

Read more →

Read the original article: Insurance Software Company Leaks 28 Million Texas Driver Records by Mistakes Vertafore, an insurance software maker, has announced that it accidentally leaked Texas driver license information of almost 28 million people, including names and addresses. It’s…

Read more →

Read the original article: Tick-Tock: Black Friday 2020 Could Turn into a Cybercriminal Medley as Retailers Adjust to Social-Distancing During COVID-19 With the 2020 Holiday season drawing near, shoppers worldwide are getting ready for the yearly Black Friday bonanza of…

Read more →

Read the original article: Finland Drafting New Legislation Following Cyber-Attack on Psychotherapy Center The government of Finland is responding to a cybersecurity incident disclosed in October that left up to 40,000 Finns at risk of identity theft, fraud and extortion.…

Read more →

Read the original article: Microsoft says it’s time for you to stop using SMS and voice calls for multi-factor authentication SIM-swapping scams and other techniques pose risk to those who rely upon phone-based authentication But don’t make the mistake of…

Read more →

Read the original article: Update Your Chrome Browser Now! Google Says These High-Severity Bugs Have Exploits in the Wild A Google Chrome update is generally only hot news if it’s a major release packed with exciting new features. But Chrome…

Read more →

Read the original article: Ransomware gang takes out Facebook ads to apply pressure on victim Campari Group was infected by ransomware earlier this month Ragnar Locker Team used hacked Facebook accounts to apply pressure on blackmail victims. It’s a story…

Read more →

Read the original article: Hotel Reservation Platform Leaks 7 Years’ Worth of Customer Records, Exposes Millions to Fraud and Extortion Prestige Software, which supplies services to thousands of booking websites, has reportedly exposed the private data and credit card details…

Read more →

Read the original article: Fake Discord npm Package Is a Malware that Steals Browser Data Security researchers have identified a malicious npm package that an attacker designed to steal web browser files and Discord gaming instant messages. This is not…

Read more →

Read the original article: Threat Actors Stole Source Code from SonarQube Instances of US Government Agencies, Says FBI FBI issues a warning of a successful intrusion into some US government agencies and private businesses by unnamed threat actors who used…

Read more →

Read the original article: Campari staggers to its feet following $15 million Ragnar Locker ransomware attack Campari has managed to restore some of its IT systems following attack Headaches continue for drinks manufacturer after ransom demand over stolen data Campari,…

Read more →

Read the original article: Capcom Hit by Ransomware Cyberattack Capcom announced that hackers accessed some of the company resources, including emails and file servers, and some operations have been halted. The first report would indicate a ransomware infection with Ragnar…

Read more →

Read the original article: Ragnar Locker Group Claim to Have Stolen 2 Terabytes of Data in Campari Group Cyberattack Italian beverage manufacturer Campari Group has disclosed a ransomware attack that forced the company to temporary suspend its online website and…

Read more →

Read the original article: Health Practice Loses Patient Data in Ransomware Attack, Tells Clients to Call Before Visiting Alamance Skin Center, a Cone Health practice in Burlington in the US state of North Carolina, has disclosed a ransomware attack that…

Read more →

Read the original article: DOJ Seizes $1 Billion in Bitcoin Linked to the infamous Silk Road Underground Marketplace The US government has seized a whopping $1 billion worth of bitcoin linked to the infamous Silk Road criminal marketplace. The dark…

Read more →

Read the original article: GrowDiaries Databases Found Exposed Online; Cannabis Growers Advised to Change Credentials at Once A security researcher has discovered an unprotected database owned by GrowDiaries, a website where cannabis growers talk about their plants. The number of…

Read more →

Read the original article: Toymaker Mattel Discloses Ransomware Attack Leading toymaker Mattel has publicly acknowledged a ransomware attack that affected its business systems earlier this year. The maker of Barbie, Hot Wheels and Thomas & Friends toys discovered the security…

Read more →

Read the original article: Aussie Media Company Warns Investors of $7 Million Hit to Profit Due to Ransomware Attack After a ransomware infection last week, Australian media intelligence and data firm Isentia is advising investors it will be around $7…

Read more →

Read the original article: Second-Hand USBs Purchased on eBay Expose Personal and Financial Information of Users More than two-thirds of second-hand USBs purchased from auction platforms such as eBay contain private and sensitive information belonging to their previous owners, according…

Read more →

Read the original article: Google Reveals Windows Kernel Bug Exploited in the Wild That’s Been Around Since 2009 Google’s Project Zero team has revealed the existence of a vulnerability in the Windows operating systems, spanning from Windows 7 to the…

Read more →

Read the original article: Online Precious Metal Retailer Warns Customers of Payment Info Breach JM Bullion, an online retailer of gold and silver products, has recently disclosed a security incident exposing shoppers’ personal and financial information. According to a notice…

Read more →

Read the original article: Home Depot Confirms Data Leak after Canadian Shoppers Receive Random Order Confirmation Emails Inboxes of Canadian Home Depot customers were flooded with hundreds of order confirmation emails revealing the personal information of random shoppers earlier this…

Read more →

Read the original article: Marriott data breach fine slashed to £18.4 million by UK regulator ICO initially fined Marriott International £99.2 million Fine massively reduced in part due to COVID-19’s impact on hotel industry Marriott International has been fined £18.4…

Read more →

Read the original article: New York and Oregon Hospitals Hit by Ransomware as FBI Warns of Imminent Attacks on US Healthcare US hospitals have come under a new wave of ransomware attacks that has interrupted healthcare operations at facilities in…

Read more →

Read the original article: FBI and CISA Caution of APT Attack that Already Exfiltrated Data from Government Systems The FBI and the US Cybersecurity and Infrastructure Security Agency (CISA) issued an advisory about Russian state-sponsored advanced persistent threats (APT) identified…

Read more →

Read the original article: FBI Warns Healthcare Sector of Increased Ransomware Activity Commanded by Ryuk Gang The Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the U.S. Department of Health and Human Services (HHS) have…

Read more →

Read the original article: COVID-19, Zoom and Bedroom Lewdness Make for Sly (S)extortion Tactic Cybercriminals are getting creative during the Covid-19 social-distancing measures, taking advantage of popular video-conference tools such as Zoom to strengthen their pitch in a fresh sextortion…

Read more →

Read the original article: COVID-19, Zoom and Bedroom Lewdness Make for Sly Sextortion Tactic Cybercriminals are getting creative during the Covid-19 social-distancing measures, taking advantage of popular video-conference tools such as Zoom to strengthen their pitch in a fresh sextortion…

Read more →

Read the original article: World’s Largest Office Furniture Maker Hit with Ryuk Ransomware The ransomware gang behind the recent attack on Sopra Steria is making new headlines this week, this time for an attack on the world’s top office furniture…

Read more →

Read the original article: Donald Trump’s Campaign Website Seized by Hackers Running Cryptocurrency Scam Donald Trump’s campaign website was hijacked by hackers who claimed to have evidence discrediting the president and proving his cooperation with foreign actors to manipulate the…

Read more →

Read the original article: Louisiana National Guard Called in to Deal with Cyberattacks, Report Claims The state of Louisiana called in the National Guard to stop a few ransomware attacks affecting government offices, according to a Reuters report. With less…

Read more →

Read the original article: Personal Information of Google Employees Exposed in Data Breach at Immigration Law Firm Immigration law firm Fragomen, Del Rey, Bernsen & Loewy has disclosed a data breach that compromised personal identifiable information of current and former…

Read more →

Read the original article: Amazon Fires Employee For Leaking Customer Data Retail giant doesn’t disclose how many customers have been affected Users should be on their guard against fraudulent and phishing emails Multiple Amazon customers turned to social media to…

Read more →

Read the original article: Cybercrooks Hijack Nando’s Customer Accounts to Make Fraudulent Meal Purchases Fans of the popular Nando’s UK eateries have fallen prey to a credential stuffing attack that drained hundreds of pounds sterling out of their bank accounts.…

Read more →

Read the original article: ‘Eris Loris’ Hacker Spammed Millions of ‘Among Us’ Games with Pro-Trump Messages, YouTube Channel Ads Over the past three days, popular indie game Among Us has undergone a series of spam attacks affecting millions of online…

Read more →

Read the original article: Vastamo Hacker Says He Doesn’t Care if Therapy Leaks Drive Patients to Suicide Finnish local media is reporting new developments in the ransomware incident involving the Vastamo psychotherapy center. The attacker has been regularly leaking sensitive…

Read more →

Read the original article: FTC Launches New Fraud Reporting Tool for US Consumers The US Federal Trade Commission (FTC) has launched a new cyber-fraud reporting platform, where consumers can easily report fraud, scams or bad business practices. As fraud has…

Read more →

Read the original article: Hacker Claims to Have Guessed Donald Trump’s Twitter Password A Dutch ethical hacker claims to have gained access to Donald Trump’s official Twitter account by guessing the password, making this the second successful attempt in four…

Read more →

Read the original article: IT Services Giant Sopra Steria Reportedly Hit with Ryuk Ransomware Sopra Steria, one of the world’s biggest IT services companies, has reportedly been hit with the Ryuk ransomware.  Sopra Steria Group SA is a giant IT firm…

Read more →