Hack

HK: Hacking of Cyberport sparks discussions of law on cyber security

The Standard reports: Authorities are now mulling to introduce a law on cyber security and will strengthen communications with overseas agencies, said I&T minister Sun Dong following a recent hacking on Cyberport’s computer system. Some 400 gigabytes of data, including HKID card numbers, bank statements and resumes, was stolen and released on the dark...

#StopRansomware: Snatch Ransomware

There is a new Joint Cybersecurity Advisory issued today. This one is about Snatch Team. Summary: The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency(CISA) are releasing this joint CSA to disseminate known ransomware IOCs and TTPs associated with the Snatch ransomware variant identified through FBI investigations as recently as...

“I’m Not Pro-Russia and I’m Not a Terrorist!” —- InfraGard and Airbus Hacker “USDoD” Unveils His New Campaigns

The first time DataBreaches remembers hearing about the man who calls himself “USDoD” was when he posted a sales listing for member data from InfraGard. He had not only managed to acquire data on 80,000 members of an organization dedicated to protecting critical infrastructure, but his revelation of his method exposed some embarrassingly inept...

AlphV responds to MGM incident and sloppy reporting

AlphV has posted a statement about their attack on MGM Resorts. They also post some scathing criticisms of journalists and news outlets for reporting inaccurately and not verifying sources. Of note, their statement also asserts, “The ALPHV ransomware group has not before privately or publicly claimed responsibility for an attack before this point. Rumors...

Identity of NSA hacker behind cyberattack on China’s leading aviation university identified; to be disclosed in due course: source

Yuan Hong reports: During the investigation of the cyberattack against Northwestern Polytechnical University (NPU), a leading Chinese aviation university, China has successfully extracted multiple samples of the spyware named SecondDate, and with the collaborative efforts of partners in various countries, the real identity of the US’ National Security Agency (NSA) personnel responsible for launching...

MGM and Caesars Hacked by Same Group in Span of a Few Weeks

William Turton, Christopher Palmeri, and Katrina Manson report: MGM Resorts International was hacked by the same group of attackers that breached Caesars Entertainment Inc. weeks earlier, according to four people familiar with the matter. The hackers demanded a ransom from MGM, according to two of the people. It wasn’t immediately clear how much ransom was requested or...

Caesars Entertainment paid millions to hackers in attacks

Caesars Entertainment Inc. paid tens of millions of dollars to hackers who broke into the company’s systems in recent weeks and threatened to release the company’s data, according to two people familiar with the matter. Caesars is expected to disclose the cyberattack in a regulatory filing soon, the people said. The revelation of the...

MGM Resorts incident: social engineering strikes again?

If the claims of someone in an AlphV (BlackCat) subgroup known for social engineering skills are true — and vx-underground believes their source is credible, then …. words fail: All ALPHV ransomware group did to compromise MGM Resorts was hop on LinkedIn, find an employee, then call the Help Desk. A company valued at...

Texas Medical Liability Trust updates its data breach notification; now provides notification on behalf of almost 60,000 individuals

In March, Texas Medical Liability Trust on behalf of itself and its affiliates, Texas Medical Insurance Company, Physicians Insurance Company, and Lone Star Alliance, Inc., a Risk Retention Group (collectively “TMLT”) filed a breach notification with the Maine Attorney General’s Office. That submission indicated that 625 individuals had been affected by a breach that...