VF Corp Says Data Breach Resulting From Ransomware Attack Impacts 35 Million

January 19, 2024 at 08:00AM 35.5 million customers’ personal information was stolen in a ransomware attack on VF Corporation in December 2023. The attack affected brands like Dickies, The North Face, and Vans. The company has restored impacted systems, but faced operational disruptions. It reported no evidence of stolen passwords and expects minimal financial impact. … Read more

Ransomware Group Targets Foxconn Subsidiary Foxsemicon

January 18, 2024 at 06:12AM Foxsemicon, a subsidiary of Foxconn, was reportedly attacked by LockBit ransomware. 5 Tb of data was claimed to be stolen and encrypted, including personal data of customers and employees. The cybercriminals demanded a ransom and threatened to make the data public. Although Foxsemicon believes the impact won’t be significant, the … Read more

What’s worse than paying an extortion bot that auto-pwned your database?

January 17, 2024 at 10:10AM The Border0 security researchers have identified a malicious extortion bot targeting publicly exposed PostgreSQL and MySQL databases with weak passwords. This bot autonomously wipes out vulnerable databases and leaves a ransom note, claiming to back up the data when in reality it only saves a small portion. It has managed … Read more

Fidelity National Financial: Hackers stole data of 1.3 million people

January 10, 2024 at 03:46PM Fidelity National Financial confirmed a cyberattack by the BlackCat ransomware gang on November 19, 2023, affecting 1.3 million customers. The attack prompted containment measures and data exfiltration from breached systems. FNF is providing affected customers with credit monitoring and identity theft services and is prepared to defend against potential lawsuits. … Read more

It’s Time to Close the Curtain on Security Theater

January 9, 2024 at 10:05AM The text discusses the concept of security theater in cybersecurity, criticizing the superficial measures and controls implemented by organizations. It highlights the detrimental effects of security theater and provides recommendations to shift focus towards proactive risk mitigation, including conducting risk assessments, prioritizing security enhancements, and implementing cyberattack prevention strategies. Key … Read more

Toronto Zoo: Ransomware attack had no impact on animal wellbeing

January 8, 2024 at 05:19PM The Toronto Zoo experienced a ransomware attack with no impact on animals or operations. They are investigating potential effects on guest and donor records and are working with law enforcement and cybersecurity experts. In a similar incident, the Toronto Public Library was attacked, causing service disruptions and data theft. The … Read more

US mortgage lender loanDepot confirms ransomware attack

January 8, 2024 at 12:41PM Leading U.S. mortgage lender loanDepot confirmed a ransomware attack that encrypted data, affecting customer payment portals and prompting system shutdowns. An investigation is underway with external experts’ assistance, including notifications to law enforcement. Although the impact is being assessed, concerns arise over potential data exposure. Previously, loanDepot reported a 2022 … Read more

British Library: Finances remain healthy as ransomware recovery continues

January 8, 2024 at 08:26AM The British Library is disputing reports of potentially $9 million recovery costs from a 2023 ransomware attack, with final costs unconfirmed. The attack caused significant disruption, with various systems offline. The recovery process could take several months, impacting services and payments to authors. The library will issue updates on its … Read more

Estes Express Lines Says Personal Data Stolen in Ransomware Attack

January 4, 2024 at 08:42AM Freight shipping company Estes Express Lines informed over 21,000 individuals of a recent ransomware attack that compromised their personal information, including names, personal identifiers, and Social Security numbers. Despite no reported identity theft or financial losses, the company undertook forensic investigations and cooperation with law enforcement. Estes did not pay … Read more

Estes refuses to deliver ransom, but admits client data got opened

January 3, 2024 at 04:35PM Estes Express Lines, a major US freight shipper, notified over 20,000 customers of a potential data breach due to a ransomware attack. The company refused to pay the ransom and claims the cyberattack has been mitigated. The criminals stole personal information and Estes is cooperating with the FBI while offering … Read more