LockBit repeats ‘PR stunt’ as Thales ransomware investigation claims no breach

Rory Bathgate reports: An investigation by Thales has found no evidence that the LockBit ransomware organistion successfully attacked its systems, following threats by the group to post stolen company data on hacker forums. On Tuesday, the French multinational publicly stated that it had seen posts on the dark web by ransomware group LockBit 3.0, claiming to have stolen...

Ransomware cost US banks $1.2 billion last year

Dan Robinson reports: Banks in the US paid out nearly $1.2 billion in 2021 as a result of ransomware attacks, a marked rise over the year before though it may simply be due to more financial institutions being asked to report incidents. The figures come from the most recent Financial Trend Analysis report  on ransomware...

Vodafone Italy discloses data breach after reseller hacked

Bill Toulas reports: Vodafone Italia is sending customers notices of a data breach, informing that one of its commercial partners, FourB S.p.A., who operates as a reseller of the telecommunications services in the country, has suffered a cyberattack. According to the notice, the cyberattack took place in the first week of September and resulted in the compromise...

World leaders make fresh vows to fight global ransomware threat

Martin Matishak reports: A coalition of government cybersecurity leaders from nearly 40 countries on Tuesday reaffirmed to work together to stamp out ransomware attacks, launching several new efforts meant to better combat the rising global threat. “We commit to work together to prioritize disruption targets to leverage the breadth of authorities and tools available...

Europe’s Biggest Copper Producer Hit by Cyber-Attack

Phil Muncaster reports: The world’s second largest copper producer has been hit by a cyber-attack which forced IT systems offline. Hamburg-headquartered Aurubis revealed in a brief statement that the attack struck on Friday evening. “This was apparently part of a larger attack on the metals and mining industry,” it said. “As a result, numerous systems at...

Dropbox admits 130 of its private GitHub repos were copied after phishing attack

Simon Sharwood reports: Dropbox has said it was successfully phished, resulting in someone copying 130 of its private GitHub code repositories and swiping some of its secret API credentials. The cloud storage locker on Tuesday detailed the intrusion, and stated “no one’s content, passwords, or payment information was accessed, and the issue was quickly resolved.” Read...

Cybercriminals Responsible For Computer Intrusions Nationwide Indicted For RICO Conspiracy That Netted Millions

Orlando, Florida – United States Attorney Roger B. Handberg announces the partial unsealing of an indictment charging Andi Jacques (41, Greenacres), Monika Shauntel Jenkins (33, Hollywood), Louis Noel Michel (28, Hollywood), Jeff Jordan Propht-Francisque (28, Pompano Beach), Dickenson Elan (39, Clearwater), Michael Jean Poix (31, West Palm Beach), Vladimyr Cherelus (33, Lauderdale Lakes), and...

OCR Releases New Recognized Security Practices Video

In recognition of National Cybersecurity Awareness Month, OCR has produced a new video this October for organizations covered under the HIPAA Rules on Recognized Security Practices. Recommended security practices can help organizations improve their ability to safeguard patient information from cyberattacks and better safeguard the health care services we all rely upon.   Section 13412...

Healthcare provider to incarcerated people discloses breach by data security incident by claims processor

Mediko, Inc. has issued a press release concerning an unintended exposure of protected health information by their third-party claims processor, CorrectCare. According to their notice, on July 6, CorrectCare discovered that two file directories on their server had been misconfigured and were exposing files to the public. The investigation subsequently determined that the exposure...