Blogs from all around the World

Recent blog posts

  

Tulsa, Oklahoma and Rensselaer Polytechnic Institute disclose ransomware incidents

No sector has been spared from ransomware incidents. In this report, we have one from the education sector and one

  

Au: 19 years of personal data was stolen from ANU. It could show up on the dark web

Nicholas Patterson reports: Today it was revealed the Australian National University (ANU ) fell victim to a cyber security attack

  

SolarWinds Hack Alarms US Spy Agencies to Inspect Software Suppliers’ Ties with Russia

US intelligence agencies have started to study supply chain threats from Russia, a top official within the Justice Department confirmed

  

Ransomware Cyber Attack Forced the Largest U.S. Fuel Pipeline to Shut Down

by May 9, 2021. GIXnews Colonial Pipeline, which carries 45% of the fuel consumed on the U.S. East Coast, on

  

When it comes to passwords, complex is not always safer, new study shows

For a long time password strength was measured by how complex a password was, such as whether it included both

  

Parkville resident facing federal indictment for dating, business email compromise scams with alleged losses of more than $2.3 million | #datingscams | romancescams | #scams

PARKVILLE, MD—A federal grand jury has returned an indictment charging three defendants on federal charges of conspiracy to commit wire

  

Noblr Reciprocal Exchange to notify 97,633 consumers of breach involving insurance quote platform

The following incident sounds almost identical to the  incident reported by American Family Insurance, but this report is from Noblr

  

Cyberattack Shuts Down Top US Fuel Pipeline Network

NEW YORK – Top U.S. fuel pipeline operator Colonial Pipeline has shut its entire network, the source of nearly half

  

American Family Insurance to notify 283,734 of breach linked to unemployment benefits fraud

American Family Mutual Insurance Company, S.I. (American Family) will be sending out letters on or about May 14 to people

  

ATC Transportation discloses ransomware attack

Dallas, Texas, May 07, 2021 (GLOBE NEWSWIRE) — ATC Transportation is providing notice of a data security incident it recently

  

Es: IT services of the Oviedo City Council knocked out

Gonzalo Diaz-Rubin reports that all of the IT services of the Oviedo City Council have been crippled. Machine translation: A malicious

  

Fr: Eco-friendly sneaker brand Veja hacked

Damien Licata Caruso reports that Veja, a French footwear and accessories brand known for its eco-friendly sneakers, was hacked on

  

Reported ransomware attack leads to weeks of Aprima EHR outages

  This is the kind of news story that people may miss because it was published on a Friday afternoon.

  

Colonial Pipeline cyberattack shuts down pipeline that supplies 45% of East Coast’s fuel

Aggregated IT Security News and articles about information security, vulnerabilities, exploits, patches, releases, software, features, hacks, laws, spam, viruses, malware,

  

One of country’s largest pipelines shuts down to contain cybersecurity breach

David E. Sanger reports: A cyberattack forced the shutdown of one of the largest pipelines in the United States, in

  

Three Affiliated Tribes Hit by Ransomware Attack, Holding Tribal Information Hostage

Darren Thompson reports that on  April 28, the Three Affiliated Tribes—the Mandan, Hidatsa & Arikara Nation—announced to its staff and

  

Malspam Campaign Uses Hancitor to Download Cuba Ransomware

Attackers have co-opted the Hancitor malware downloader and recently used it to deliver Cuba ransomware as part of an email

  

TsuNAME: New DNS Bug could be used to DDoS Authoritative DNS Servers

Security researchers have found extreme domain name system (DNS) fixes that hackers may use to conduct constructive denial-of-service attacks on

  

Top 12 Security Flaws Russian Spy Hackers Are Exploiting in the Wild

Cyber operatives affiliated with the Russian Foreign Intelligence Service (SVR) have switched up their tactics in response to previous public

  

Cyberattack prompts shutdown of major fuel pipeline in the US

One of the largest pipelines in the US has been taken offline by its operator following a cyberattack. First ,

  

San Diego Family Care discloses possible data breach

City News Service reports: San Diego Family Care announced Friday it has alerted current and former patients and employees about

  

Massive hack exposes emails from top Lightfoot officials

Tom Schuba reports: A massive cache of tens of thousands of hacked emails detailing the inner workings of Mayor Lori

  

Timberland Regional Library Takes Action After Learning of Data Security Incident

TUMWATER, Wash., May 7, 2021 /PRNewswire/ — Timberland Regional Library (“TRL”) announced today that it has taken action after learning of a data

  

UK: Hospital medic lost boxes of private patient data while conducting study without approval

Jonathan Humphries reports: A senior medic has been suspended after running a clinical trial using sensitive medical information without permission

  

Sg: United Overseas Bank employee allegedly fell prey to scam & leaked personal information of 1,166 customers

Matthias Ang reports: An employee in UOB has disclosed the personal details of 1,166 customers, who are China nationals, as

  

Cyberattack Forces Shutdown of Major U.S. Pipeline

Colonial Pipeline halts all fuel pipeline operations in response to a cyberattack A cyberattack has forced an operational shutdown of

  

OCR Investigator: Goal Is to Uncover ‘Root Cause,’ Remedy Harm From Violations

If you haven’t read it already, do read Theresa Defino’s excellent report from HCCA Compliance’s Report on Patient Privacy on

  

In Capital One Data Breach Litigation Federal Judge Grants Capital One’s Motion To Certify Question to Virginia Supreme Court

Kristin L. Bryan of Squire Patton Boggs writes: CPW [Consumer Privacy World] has been tracking since last year the Capital

  

Research Shows 19 Petabytes of Data Exposed Across 29,000+ Unprotected Databases

The majority of businesses keep confidential data in databases. Passwords, usernames, document scans, health records, bank account, and credit card

  

Man accused of spending COVID relief cash on Ferrari, Lamborghini

Irvine, California: subscribe A man has been arrested and charged for allegedly obtaining $US5 million ($6.3 million) in COVID-19 relief

  

Critical Cisco SD-WAN, HyperFlex Bugs Threaten Corporate Networks

Cisco has addressed two critical security vulnerabilities in the SD-WAN vManage Software, one of which could allow an unauthenticated attacker

  

Bulletproof hosting admins plead guilty to running cybercrime safe haven

. Four individuals from Eastern Europe face 20 years in prison for Racketeer Influenced Corrupt Organization (RICO) charges after pleading

  

The City of Chicago Provides Notice of Jones Day Incident Due to Accellion Hack

CHICAGO, May 7, 2021 /PRNewswire/ — The City of Chicago today announced that a third-party vendor executing a data transfer of a select

  

Cyber criminals potentially accessed data of 10,000 people in Brevard School Board breach

Bailey Gallion reports: Cyber criminals accessed the identifying information of about 10,000 people  last year through the email accounts of

  

University of Florida Health Shands notifies patients of privacy breach

University of Florida Health Shands officials have notified 1,562 individuals affected by a privacy incident involving a former employee who

  

FR: Albioma hit by “ransomware type virus”

Albioma is an independent renewable energy producer that is listed on the Paris stock exchange. In a press release today,

  

Friday Squid Blogging: COVID Relief Funds

A town in Japan built a giant squid statue with its COVID relief grant. One local told the Chunichi Shimbun

  

How North Korean APT Kimsuky Is Evolving Its Tactics

Researchers find differences in Kimsuky’s operations that lead them to divide the APT into two groups: CloudDragon and KimDragon.Dark Reading:Read

  

‘Panda Stealer’ Targets Cryptocurrency Wallets

See Also: Live Webinar | Software Security: Prescriptive vs. Descriptive The gang behind the malware, dubbed “Panda Stealer,” starts with

  

Low CVE-2020-4993: IBM Qradar security information and event manager

Description: IBM QRadar SIEM 7.3 and 7.4 when decompressing or verifying signature of zip files processes data in a way

  

Most Organizations Feel More Vulnerable to Breaches Amid Pandemic

More than half of business see the need for significant long-term changes to IT due to COVID-19, research finds.Dark Reading:Read

  

Four Individuals Plead Guilty to RICO Conspiracy Involving “Bulletproof Hosting” for Cybercriminals

Four Eastern European nationals have pleaded guilty to conspiring to engage in a Racketeer Influenced Corrupt Organization (RICO) arising from

  

Hundreds of Millions of Dell PCs At Risk, Apply Patch Now!

PC maker Dell has released a patch for five high-severity flaws discovered in the company’s firmware update driver impacting Dell

  

FBI, NSA, CISA & NCSC Issue Joint Advisory on Russian SVR Activity

The report provides additional details on tactics of Russia’s Foreign Intelligence Service following public attribution of the group to last

  

Millions put at risk by old, out of date routers

Testing from Which? reveals many homes in the UK are using routers that can’t receive security updates. Categories: Awareness Tags:

  

US-UK Gov Warning: SolarWinds Attackers Add Open-Source PenTest Tool to Arsenal

Agencies in the United States and the United Kingdom on Friday published a joint report providing more details on the

  

12:25 ET Leidos completes acquisition of Gibbs & Cox

“We are delighted to welcome the Gibbs & Cox team to the Leidos family,” said Leidos Chairman and CEO Roger

  

Qualcomm vulnerability affects nearly one-third of all phones (devz123@gmail.com(Dev Kundaliya)/Computing.co.uk Latest updates)

Samsung, LG, Google and Xiaomi are among the major manufacturers using Qualcomm’s chips. Nearly a third of all smartphones in

  

Over €1 million in cash seized as part of investigation into tobacco smuggling ring

An international law enforcement operation coordinated by Europol and Eurojust with the involvement of 3 countries has resulted in the

  

ISMG Editors Discuss Cryptocurrency Regulations and More

Clockwise, from top left: Scott Ferguson, Anna Delaney, Marianne Kolbasuk McGee and Tom Field Four editors at Information Security Media

  

NCSC Sets Out Security Principles for Smart Cities

via infosecurity-magazine.com NCSC Sets Out Security Principles for Smart CitiesThe UK’s National Cyber Security Centre (NCSC) has published a set

  

Za: NCape municipality battles devastating ransomware attack

Admire Moyo reports: The Nama Khoi Municipality in the Northern Cape Province is struggling to restore IT systems that were

  

UK: Edinburgh mental health clinic in probe after client information accessed in scam

James Delaney reports: An Edinburgh mental health clinic is at the centre of a probe into a data breach resulting in hundreds

  

Under the Microscope: ISACA Survey on Cybersecurity Workforce, Resources and Budgets

A major survey that like all surveys needs to be examined carefully rather than accepted blindly. read moreSecurityWeek RSS FeedRead

  

IA: Wolfe Eye Clinic victim of Lorenz threat actors

There is no notice of any cyberattack on the web site of Wolfe Eye Clinic in Iowa, but the clinic

  

A New Platform Maps Colombia’s Escalating Police Violence

Yet another wave of unrest is sweeping Colombia. The latest protests began on April 28 in response to a tax