Tag: data breach
Bit defenders
February 21, 2024Ken Showers, Managing Editor
This week international members of law enforcement patted themselves on the back for slaying the proverbial dragon of LockBit, but in reality, it’s just one head of the Hydra.
I don’t mean to lessen or downplay that accomplishment either. This has been a serious blow to global cybercriminal activity and a victory against destabilizing actions taken by politically aligned criminal organizations (because let’s not pretend the ransomware gangs are largely state sponsored)....
Johnson Controls hit by ransomware attack
September 28, 2023Ken Showers, Managing Editor
CORK, Ireland – A data breach has resulted in a large-scale ransomware attack perpetrated against Johnson Controls International.
The news comes courtesy of a regulatory filing made on Wednesday, Sept. 27, 2023, in which Johnson Controls details a cybersecurity incident that affected portions of its internal information technology infrastructure and applications, according to the filling. While the company notes it has implemented workarounds for affected systems and said that...
It’s time to clip Cl0p
August 23, 2023Ken Showers, Managing Editor
Onomatopoeia? More like I-don’t-want-to-pay-ya. That’s right, this week I want to talk about the out-of-control rise of ransomware.
There were some other hot topics this week, like NAPCO’s sudden misfortune, but I’d like to hear from their earnings call next week for full context. Besides, all weekend I have heard about nothing but more and more ransomware incidents hitting some notable names.
I shouldn’t be surprised to hear about it either. According to the NCC...
Healthcare workers' info exposed in B.C. health data breach
August 2, 2023SSN Staff
VICTORIA, British Columbia, Canada – On July 13, the Health Employers Association of BC (HEABC) learned that a server housing information, websites, and application forms for Health Match BC (HMBC) had been the target of a cyber-attack.
Information released about the data breach suggests that information associated with as many as 240,000 emails had been accessed. That information could include a person’s home addresses, passport and license details, and other personal data....
Fintech company Revolut plagued by security issues
July 12, 2023Ken Showers, Managing Editor
LONDON – It’s been a tough week for global neobank and fintech company Revolut as it deals with the fallout of both a system flaw and cybersecurity data breach.
A flaw in the banking entity’s U.S. payment system allowed criminals to steal as much as $20 million in funds over a span of several months in 2022. According to reporting by the Financial Times the incident has yet to be publicly disclosed and is the latest setback for the company as it struggles to obtain its banking...
Action1 releases free tool mitigating threat from MOVEit vulnerability
July 3, 2023SSN Staff
HOUSTON – The Action1 Corporation, a provider of a risk-based patch management platform has launched a free tool designed to empower IT teams in detecting compromised MOVEit instances and defending against ransomware attacks exploiting this vulnerability.
Security Systems News briefly covered the initial effects of the MOVEit data breach which have continued to grow in scale and the number of victims. In order to help organizations mitigate the threat of MOVEit vulnerability, Action1...
MOVEit and lose it
June 28, 2023Ken Showers, Managing Editor
A bad situation has continued to grow worse as the MOVEit exploit used by the CLOP ransomware gang has begun to stack up more victims.
I wrote an article, a brief one, a couple of weeks ago detailing how the data breach had affected a number of state agencies that included the Motor Vehicle Departments of Louisiana and Oregon to name a few. In short, a lot of personal information made it into the hands of hackers, at least 6 million records alone from Louisiana.
Things haven’t gotten...
Millions affected by cyber attack targeting state and federal agencies
June 16, 2023SSN Staff
WASHINGTON, D.C. – A data breach affecting millions of citizens occurred in mid-June after a cyber attack targeted an exploit in a popular file transfer software.
An exploit in the MOVEit software developed by Progress Software led to hackers breaching multiple state and federal agencies including the Motor Vehicle Departments in Louisiana and Oregon among others, where customers have had their driver’s license and state ID cards exposed. Carlie Kollath Wells reporting for Axios wrote...
U.S. Marshals suffer ransomware breach containing personal data
February 28, 2023Ken Showers, Managing Editor
WASHINGTON, D.C. – The U.S. Marshals Service (USMS) suffered a cybersecurity data breach in February, affecting what it referred to as “sensitive personal data.”
First reported by NBC News, USMS spokesperson Drew Wade, chief of the Office of Public Affairs, told the outlet that a ransomware attack occurred and constituted a major incident. The breach occurred on Feb. 17, according to Wade, and was limited to a “stand-alone USMS System." An investigation revealed that...
Okta GitHub repositories hacked, source code stolen
December 28, 2022SSN Staff
YARMOUTH, Maine – It’s been a hard year for security at identity and access management company Okta, with its most recent data breach incident causing the company to lose its source code to threat actors.
In a statement on Dec. 21 the company confirmed that earlier in the month Okta code repositories on popular website GitHub had been hacked, but assured customers that the breach did not affect customers. Furthermore GitHub concluded that none of its user services had been...