Hack

Bits ‘n Pieces (Trozos y Piezas)

Gt: Update on VSOP attack on Guatemala’s foreign ministry Last week, DataBreaches reported that the Ministry of Foreign Affairs of Guatemala was a victim of a VSOP attack. The government confirmed an attack on October 5. Services have been restored: Currently, the services are working, which has allowed us to provide uninterrupted attention to...

Cyberattack on Colorado state website follows Russian hacktivist threat

Kevin Collier reports: Colorado state officials said the government’s website was taken offline Wednesday, the result of an apparent cyberattack that came shortly after a known Russia-based hacker group posted on Telegram that it would be targeting U.S. state websites. Colorado’s website was rendered inaccessible for much of the day Wednesday, and its portal...

Hacker steals $566 million worth of crypto from Binance Bridge

Lawrence Abrams reports: Hackers have reportedly stolen 2 million Binance Coins (BNB), worth $566 million, from the Binance Bridge. Details are scant at the moment, but the attack appears to have started at 2:30 PM EST today, with the attacker’s wallet receiving two transactions , each consisting of 1,000,000 BNB. Soon after the hacker began spreading...

CSI Laboratories reports a second big breach this year

Georgia-based Cytometry Specialists d/b/a CSI Laboratories (“CSI”) has reported a second big breach this year. In a press release issued this week, CSI reports that they discovered on July 8 that they had been the victim of a phishing attack that compromised an employee’s email account. The incident was reported to HHS on September...

Revenge telecom hacking by DESORDEN Group; third attack threatened

DESORDEN Group has added a new transparency demand to their attacks against Malaysian entities: victims must disclose the breach publicly if they have not paid the attackers. If the victim doesn’t disclose and Malaysian media does not report the incident, Malaysia should expect more breaches. The added demands arose after DESORDEN claimed they spent...

WA: Columbia River Mental Health Services discloses long-running breach

Columbia River Mental Health Services in Vancouver, Washington has issued a press release about a breach that went undetected for approximately one year. From  their press release: Columbia River Mental Health Services (“CRMHS”) recently became aware of suspicious activity related to certain CRMHS email accounts.  CRMHS immediately launched an investigation, with the assistance of...

Australia’s Telstra hit by data breach, two weeks after attack on Optus

Byron Kaye and Renju Jose report: Australia’s largest telecoms firm Telstra Corp Ltd (TLS.AX) said on Tuesday it had suffered what it called a small data breach, a disclosure that comes two weeks after its main rival Optus was left reeling by a massive cyberattack. Telstra, which has 18.8 million customer accounts equivalent to three-quarters of...

“CISA wasted our time, we waste CISA reputation” — Vice Society

Over the Labor Day weekend, the Los Angeles Unified School District (LAUSD) experienced a ransomware attack. Although their initial disclosure did not name the ransomware group involved, CISA issued an alert on September 6 about Vice Society attacking the education sector. Two days later, Vice Society acknowledged responsibility for the attack on LAUSD. LAUSD...