Tim Starks reports: A recent spree of “smishing” attacks points to what some experts anticipate will be a wider threat in the future. The technique, which claims victims at Twilio and targeted others at Cloudflare, combines text messages intent on luring victims into clicking on a link, leans on the ubiquity of smartphones, seeks...
KVOA reports: An internet outage that affected Tucsonans over the weekend was due to a cyber attack, according to Cox Communications. Cox says the attack has been stopped and that no customer information was compromised. They said their efforts to stop the attack was the reason for the internet outage. Read more at KVOA.
Marco A. DeFelice has been looking into a number of new ransomware groups that have recently poked their heads out. PT_Moisha is one of the new names, but they tell Marco they are an old group: Aoyuan Healthy Life Group, with operational offices also in Sydney in Australia and in Toronto and Vancouver in Canada,...
Magellan Health Magellan Health agreed to pay $1.43 million to resolve data breach claims stemming from a 2019 phishing attack that exposed data for thousands of patients. The settlement benefits individuals who received a notification that their personal identifying information or personal health information may have been compromised in the 2019 Magellan Health data...
Casey K. Umetsu, Sr., age 40, of Honolulu, Hawaii, pled guilty today before United States District Judge Jill A. Otake to sabotaging his former employer’s computer network. Sentencing is set for January 19, 2023. According to court documents and information presented in court, Umetsu worked as an information technology professional for a prominent Hawaii-based...
Australia has ordered an Australian national, David Kee Crees, extradited to the U.S., where he faces 22 counts involving hacking, fraud, and aggravated identity theft. Two of Crees’ better-known aliases were “Abdilo” and “DR32.” “Abdilo” DataBreaches started reporting on Crees in 2015 when he was known to this site as “Abdilo.” At the time,...
Carly Page reports: U.S. business publication Fast Company has confirmed that a hacker breached its internal systems to send offensive push notifications to Apple News users. In a statement, Fast Company said that a threat actor breached the company’s content management system (CMS) on Tuesday, giving them access to the publication’s Apple News account. Read more at TechCrunch.
Nick Pearson reports: State governments have begun announcing special changes to allow people exposed in the Optus data leak to get new driver’s licences as soon as possible. Among the details accessed by the hacker are driver’s licence numbers, which are commonly used to verify someone’s identity. NSW Customer Services Minister Victor Dominello said people in the state can...
As seen on the European Data Protection Board website, a decision that reminds us how broad the definition of “personal information” is in the GDPR. The monetary penalty is not large by U.S. standards (slightly more than $12,100.00), but it’s the point and notification required. Background information Date of final decision: 6 July 2022...
Leaked LockBit 3.0 builder used by ‘Bl00dy’ ransomware gang in attacks