Blog
-
Massive Ransomware Attack Campaign Traced to Unpatched Vulnerability in VMWare Servers
A wave of ransomware attacks taking place since the beginning of February has been tied to an old vulnerability in VMware servers. but thousands appear to remain unpatched as an automated process has compromised them in countries around the world.
-
Google Fi Service Impacted by T-Mobile Data Breach, Some Customers Notified of Account Hijacking
This is the eighth T-Mobile data breach in the last five years; With the Google Fi service impacted, this now includes business partners that might be sharing customer data with it.
-
10 Million Customer Data Records Stolen in Cyber Attack on JD Sports
While UK customers appear to be happy with the apparel, there will no doubt be some hard questions about how safely JD Sports is handling customer data after an apparent cyber attack on a database holding 10 million records.
-
When Game Cheats Are Worth Hacking For: Riot Games Security Breach Targeted Online Game Code
Security breach of Riot Games targeted source code for governing game cheats for League of Legends and Teamfight Tactics. Source code of League of Legends itself auctioned at starting price of $1 million.
-
International Law Enforcement Operation Takes Down Hive Ransomware, Decryption Keys Available to Victims
Hive ransomware infrastructure is under FBI control. In tandem with several other agencies around the world, an international law enforcement operation has seized servers and obtained the group’s decryption keys.
-
Encryption Key Stolen Along With Encrypted Backups, Leaving GoTo Customers Uncertain About the Safety of Their Data
A wide range of products across the GoTo ecosystem have been compromised, and customers have been left to wonder if their data has been exposed after encrypted backups were taken along with an encryption key that the company says provides access to “a portion” of the stolen data.
-
Are Ransomware Payments Way Down? Yes, but There’s a Catch (Or Two)
2020 and 2021 saw massive increases and record costs, and ransomware payments continue to be well above what was seen in the more “normal” conditions prior to March 2020 despite a big 40% drop.
-
New FTX Leadership Recovering Funds, but Nearly Half a Billion in Stolen Crypto Lost to Hackers
About $5 billion of the FTX shortfall has been recovered thus far but apparently at least about $415 million of its funds have walked out the door in the form of stolen crypto.
-
WooCommerce, Others Hit by Security Breach of Mailchimp Customer Support Tools
Another security breach has impacted over a hundred Mailchimp customers. Social engineering was used to gain access to the company’s customer support tools similar to prior attacks.
-
Tens of Thousands of PayPal Accounts Compromised by Credential Stuffing Attack That Drew From Other Breaches
35,000 accounts were compromised in December by a credential stuffing attack. The company says that it sees no evidence that money was moved out of PayPal accounts or that unauthorized charges were made.