On January 20, the data protection officer for Credit Suisse AG filed a breach notification with the Maine Attorney General’s Office. According to their notice, a breach occurred on or about January 1, 2016. The exact date was unknown, and the breach reportedly wasn’t discovered until December 21, 2022. The summary description of the...
David Slone reports: Wawasee Community School Corporation is dealing with a possible ransomware attack that began late last week. Ransomware is a type of malicious software that is designed to block access to a computer system until money is paid. According to a statement released to parents Friday, provided by Superintendent Dr. Steve Troyer...
Micaela McMurrough, Ashden Fein, Caleb Skeath, and Matthew Harden of Covington and Burling write: On January 19, 2023, the National Institute of Standards and Technology (“NIST”) published a Concept Paper setting out “Potential Significant Updates to the Cybersecurity Framework.” Originally released in 2014, the NIST Cybersecurity Framework (“CSF” or “Framework”) is a framework designed to assist organizations...
Eileen Yu reports: An Australian man has been sentenced to jail for more than two years over an SMS phishing scam, during which he stole AU$100,000 ($69,751) and targeted 450 victims. The Sydney Local Court found the man guilty of various cybercrime offences, including obtaining and supplying data with intent to commit a computer...
Ben Lovejoy reports: Twitter GodMode – an internal tool that hackers used to tweet from high-profile accounts, including Apple, back in 2020 – remains available to all of the company’s engineers, according to a new report today. The Washington Post reports that a whistleblower reported this to Congress back in October, and it has now been...
There’s another update to the crippling ransomware attack the archipelago of Vanuatu suffered months ago. RNZ reports: The Vanuatu Chief Justice has confirmed that court records were lost in the ransomware attack on government agency computer systems late last year. Vincent Lunabek said the courts were able to save some offline data concerning the...
IANS reports: Riot Games was a victim of a recent cyber attack over the weekend. After an analysis of the attack, Riot Games has revealed that the source code for its popular video games League of Legends and TFT (Teamfight Tactics) were stolen in the recent cyber attack. In addition, the source code of a legacy anti-cheat platform was also...
Paulina Okunytė reports: Private data allegedly belonging to more than 230,000 Puma customers in Chile has been found on a hacker forum. A threat actor has listed an 84MB-strong dataset for sale that allegedly belongs to the multinational sportswear manufacturer. The cybercriminal or criminals behind the dataset listing claim that it is from Puma’s...
Carly Page reports: LastPass’ parent company GoTo — formerly LogMeIn — has confirmed that cybercriminals stole customers’ encrypted backups during a recent breach of its systems. The breach was first confirmed by LastPass on November 30. At the time, LastPass chief executive Karim Toubba said an “unauthorized party” had gained access to some customers’ information stored in a...
Ransomware : comment traque-t-on les gains des cybercriminels ? (Ransomware: how do we track the profits of cybercriminals?)