January 17, 2024 at 10:10AM The Border0 security researchers have identified a malicious extortion bot targeting publicly exposed PostgreSQL and MySQL databases with weak passwords. This bot autonomously wipes out vulnerable databases and leaves a ransom note, claiming to back up the data when in reality it only saves a small portion. It has managed … Read more
January 10, 2024 at 03:46PM Fidelity National Financial confirmed a cyberattack by the BlackCat ransomware gang on November 19, 2023, affecting 1.3 million customers. The attack prompted containment measures and data exfiltration from breached systems. FNF is providing affected customers with credit monitoring and identity theft services and is prepared to defend against potential lawsuits. … Read more
January 9, 2024 at 10:05AM The text discusses the concept of security theater in cybersecurity, criticizing the superficial measures and controls implemented by organizations. It highlights the detrimental effects of security theater and provides recommendations to shift focus towards proactive risk mitigation, including conducting risk assessments, prioritizing security enhancements, and implementing cyberattack prevention strategies. Key … Read more
January 8, 2024 at 05:19PM The Toronto Zoo experienced a ransomware attack with no impact on animals or operations. They are investigating potential effects on guest and donor records and are working with law enforcement and cybersecurity experts. In a similar incident, the Toronto Public Library was attacked, causing service disruptions and data theft. The … Read more
January 8, 2024 at 12:41PM Leading U.S. mortgage lender loanDepot confirmed a ransomware attack that encrypted data, affecting customer payment portals and prompting system shutdowns. An investigation is underway with external experts’ assistance, including notifications to law enforcement. Although the impact is being assessed, concerns arise over potential data exposure. Previously, loanDepot reported a 2022 … Read more
January 8, 2024 at 08:26AM The British Library is disputing reports of potentially $9 million recovery costs from a 2023 ransomware attack, with final costs unconfirmed. The attack caused significant disruption, with various systems offline. The recovery process could take several months, impacting services and payments to authors. The library will issue updates on its … Read more
January 4, 2024 at 08:42AM Freight shipping company Estes Express Lines informed over 21,000 individuals of a recent ransomware attack that compromised their personal information, including names, personal identifiers, and Social Security numbers. Despite no reported identity theft or financial losses, the company undertook forensic investigations and cooperation with law enforcement. Estes did not pay … Read more
January 3, 2024 at 04:35PM Estes Express Lines, a major US freight shipper, notified over 20,000 customers of a potential data breach due to a ransomware attack. The company refused to pay the ransom and claims the cyberattack has been mitigated. The criminals stole personal information and Estes is cooperating with the FBI while offering … Read more
January 3, 2024 at 08:23AM Xerox has confirmed a cybersecurity breach at its US subsidiary, XBS, following claims by INC Ransom of data exfiltration. The attack potentially compromised personal information, and Xerox is working with cybersecurity experts to investigate. The group behind the attack, INC Ransom, is known for indiscriminate targeting and previously threatened Xerox … Read more
January 2, 2024 at 02:07PM Gallery Systems, a museum software provider formed in April 2022, suffered a ransomware attack on December 28th, 2023, causing IT outages. Notable clients, including MoMA and the Met, were affected. The company is working to restore systems and data using backups, and is conducting an internal investigation while law enforcement … Read more