Press release from the U.S. Department of Homeland Security (DHS): WASHINGTON – Today, the U.S. Department of Homeland Security (DHS) announced that the Cyber Safety Review Board (CSRB) will review the recent attacks associated with Lapsus$, a global extortion-focused hacker group. Lapsus$ has reportedly employed techniques to bypass a range of commonly-used security controls and has successfully...

Bharat Sharma reports: After a cyberattack on AIIMS knocked out its servers, a threat actor is selling medical records of patients of a Tamil Nadu-based multispecialty hospital. A report released by CloudSEK claims that patient data of Sree Saran Medical Centre is on sale by a threat actor. On November 22, 2022, CloudSEK discovered a...

UY: Ministry of Transport and Public Works victim of ransomware attack Uruguay’s Ministry of Transport and Public Works (MTOP) was hit by a ransomware attack on October 17. On November 9, MTOP reported that it was back to normal after the ransomware attack, adding that it had recovered critical information and restored the affected...

Bill Toulas reports: The Australian parliament has approved a bill to amend the country’s privacy legislation, significantly increasing the maximum penalties to AU$50 million for companies and data controllers who suffered large-scale data breaches. The financial penalty introduced by the new bill is set to whichever is greater: AU$50 million Three times the value...

Tyler Orton reports: A cyberattack targeting Vancouver Film School has left students with a big lump of coal as they prepare to wrap their term in time for the holidays. “VFS has been impacted by and is investigating a suspected cyber incident. We are currently investigating and are taking all steps possible to contain...

David Purdum reports: An investigation into an ongoing cyberattack that impacted thousands of betting accounts at the largest online sportsbooks has been escalated to the FBI, an industry source told ESPN. Some customers, who were compromised and had funds withdrawn out of their personal bank accounts, were struggling to reach DraftKings and FanDuel representatives...

Jimmy Kelly reports: In a Tweet released by the popular DeFi Protocol Ankr, the protocol made it public that it had just suffered a cyber attack wherein the hacker having minted a thousand trillion of the reward-bearing token for BNB staked on the protocol (aBNBc) made away with about 20 trillion which he later converted to BNB and...

Little Rock School District has created a web page about a data security incident  detected on Nov. 11. They do not call it ransomware and make no mention of any ransom demand. The only thing they seem to be confident of at this point is that at least some data was exfiltrated, but they...

Charles Lefebvre reports: Manitoba Health says a privacy breach that happened earlier this week following a break-in at a facility compromised some people’s personal health information. According to a statement from the province, the break-in took place at the Manitoba Health Appeal Board office on Portage Avenue on Nov. 29, with the province noting...