Ax Sharma reports: RaidForums is an underground place where private databases obtained from data breaches, vulnerability exploits, and credit card information sets are illegally traded by threat actors, or sometimes leaked for free. On RaidForums, the “Staff General” section is typically restricted to internal staff members only, but in an ironic twist of fate, this private section was accidentally left open for viewing...
Chris Fisher reports: Officials in Pottawatomie County are assessing the extent of a cyber attack discovered last week. Pottawatomie Co. Public Information Officer Becky Ryan confirms that county IT staff discovered an active cyber attack on Friday, September, 17. Ryan says the breach encrypted multiple servers, which prevented the access of many systems used every...
Long-time readers know that this blogger has encountered some interesting situations over the years in response to trying to engage in responsible disclosure of leaks or incidents. As just a few examples (apart from all the lawsuit threats for exposing leaks or incidents), this blogger was: — threatened with being infected with HIV by...
Dan Gunderman reports: In the latest security incident involving a decentralized finance protocol, cross-chain project pNetwork announced Sunday it had been hacked for 277 pBTC, a form of wrapped bitcoin, with losses worth over $12 million at current value. In a series of tweets announcing the incident, pNetwork said, “We’re sorry to inform the community...
On August 10, DataBreaches.net reported on several school districts hit by ransomware attacks. One of the districts discussed in that report was Palos Community Consolidate School District 118 in Illinois. In that section of the report, DataBreaches.net summarized some of the personnel and student data we had found in the threat actors’ data dump:...
Today’s reminder that even the leak of an email address can put someone’s life at risk. Phil Kemp, Lucy Manning, and Ed Campbell report: Defence Secretary Ben Wallace has ordered an investigation into a data breach involving the email addresses of dozens of Afghan interpreters who worked for British forces. More than 250 people...
Chief Chapree reports: Mainly known for its domain and web hosting services, Exabytes has revealed that it has experienced a ransomware attack. According to a notice that was posted in the Community Forums of its support website at 9:12 PM yesterday, the company first detected the incident at 5:00 AM. As you may expect,...
S. Vijay Kumar reports: A ransomware attack is said to have encrypted certain sensitive documents of the Tamil Nadu Public Department since Friday morning. Some of the files encrypted relate to VIP visits, their programmes and related arrangements made by State Protocol officials, official sources said. While the suspect has demanded payment of 1,950...
Hacktivists known as FocaLeaks claim to have hacked and exfiltrated data on 37,000 agents of Policía Nacional Civil de El Salvador (PNC). The information can allegedly be used to access government records on all citizens and to access criminal investigations. Ransomware attacks on police departments have made headlines a number of times over the...
Ransomware Resources for HIPAA Regulated Entities