Collaborate Disseminate
The Hacker News reports: The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warned of active exploitation of a high-severity Adobe ColdFusion vulnerability by unidentified threat actors to gain initial access to government servers. “… Continue reading Hackers Exploited ColdFusion Vulnerability to Breach Federal Agency Servers
CBIZ KA, a third-party vendor for Prime Healthcare (Prime), discovered a security incident involving CBIZ’s use of MOVEit Transfer software, which has recently reported a security vulnerability. Prime takes the responsibility of safeguarding your infor… Continue reading CBIZ KA Notice of Data Privacy Incident (Prime Healthcare)
East River Medical Imaging recently sent out notices to 605,809 patients concerning a breach in September. According to a patient notice posted on its website, on September 20, 2023, the New York medical practice identified suspicious activity within i… Continue reading DataBreaches.net 2023-12-05 13:59:25
Catherine Stoddard reports: 23andMe, a company that does genetic testing and traces ancestry through shared DNA, confirmed to FOX TV Stations on Monday that hackers accessed personal data of about 0.1% of customers, which amounts to roughly 14,000 peop… Continue reading 23andMe data breach: Hackers accessed data of 6.9 million users
Following up on a somewhat atypical strategy to monetize an alleged attack on Tipalti, AlphV updated their leak site post today. It now reads: We are systematically reaching out to affected clients of Tipalti, the first batch (consisting of organizati… Continue reading AlphV claims they have started contacting some of Tipalti’s clients
Kevin Beaumont writes: How CitrixBleed vulnerablity in Netscale has become the cybersecurity challenge of 2023. Credit union technology firm Trellance owns Ongoing Operations LLC, and provides a platform called Fedcomp — used by double digit number of … Continue reading What it means — CitrixBleed ransomware group woes grow as over 60 credit unions, hospitals, financial services and more breached in US.
From the U.S. Attorney’s Office in Massachusetts on November 29: BOSTON – An Ayer man was charged today and agreed to plead guilty in connection with a June 2023 cyberattack targeting the computer network of his former employer, an Essex County p… Continue reading Former Public School Information Technology Manager Charged with Damaging School’s Computer Network
So AlphV (aka BlackCat) is trying something different again, it seems. This time, it seems they are claiming a victim before they have even attempted to contact the victim or extort them. They post no proof of claims. They state that they are taking th… Continue reading AlphV claims an attack before even alerting the victim. How will that work out for them?
Jonathan Greig reports: About 60 credit unions are dealing with outages due to a ransomware attack on a widely-used technology provider. National Credit Union Administration (NCUA) spokesperson Joseph Adamoli said the ransomware attack targeted the clo… Continue reading 60 credit unions facing outages due to ransomware attack on popular tech provider
NYS Comptroller Thomas DiNapoli recently released an audit of the North Tonawanda City School District. Summary: Issued Date: November 03, 2023< [Read complete report – pdf] Audit Objective Determine whether North Tonawanda City School District (Di… Continue reading NYS Comptroller Audit: North Tonawanda City School District – Information Technology (2023M-102)