USDA Denies Data Breach at Payroll Facility
Mariam Baksh reports: The U.S. Department of Agriculture has found “no evidence” of a data breach at a payroll processing center but is investigating, a spokesperson said in response to news reports to...
View ArticleThe Blackbaud ransomware breach — impact on school clients
In July, 2020, cloud software firm Blackbaud announced that it had been the victim of a ransomware attack that began in February of 2020 and continued until Blackbaud was able to kick the attackers out...
View ArticleRBNZ says partner Accellion kept it in the dark about data breach
Chris Keall reports: The Reserve Bank was kept in the dark for a crucial five days about a December data breach, Governor Adrian Orr says – contradicting its technology partner’s version of events. The...
View ArticleSingtel hit by Accellion security breach, customer data may be leaked
Eileen Yu reports: Singtel says it is investigating the impact of a cybersecurity breach that may have compromised customer data, after it ascertained on February 9 that “files were taken”. The attack...
View ArticleFrench IT monitoring company’s software targeted by hackers
Reuters reports: Hackers have spent up to three years breaking into organizations by targeting monitoring software made by the French company Centreon, France’s cybersecurity watchdog said Monday. The...
View ArticleUPDATED: California DMV halts data transfers with third-party company after...
Update: As BleepingComputer reports, the AFTS attack appears to be the work of the Cuba ransomware threat actor(s) who claim to have exfiltrated “Financial documents, correspondence with bank...
View ArticleAccellion’s data breach left clients in tough position: pay extortion to...
A breach involving Accellion‘s older file transfer application has left a number of its customers in the unenviable position of not only having a data breach to deal with, but with the added threat...
View ArticleKroger reports Accellion data breach affecting pharmacy records, associate HR...
Brian Planalp reports: Kroger is informing some customers and associates that a third-party software company it uses for data services recently suffered a data breach. Kroger’s own IT systems were not...
View ArticleFireEye and Accellion provide more details on attack
Andrew Moore, Genevieve Stark, Isif Ibrahima, Van Ta of FireEye write: Starting in mid-December 2020, malicious actors that Mandiant tracks as UNC2546 exploited multiple zero-day vulnerabilities in...
View ArticleTransport for NSW confirms data taken in Accellion breach
Aras Barbaschow reports: Transport for New South Wales (TfNSW) has confirmed being impacted by a cyber attack on a file transfer system owned by Accellion. Read more on ZDNet.
View ArticleFears grow data hacked from Reserve Bank may be leaked by CLOP ransomware group
Tom Pullar-Strecker reports: A ransomware gang appears to be releasing confidential data obtained from the hack of customers of US software company Accellion, raising fears that New Zealand banks may...
View ArticleCISA Releases Joint Cybersecurity Advisory on Exploitation of Accellion File...
The cybersecurity authorities of Australia, New Zealand, Singapore, the United Kingdom, and the United States have released Joint Cybersecurity Advisory AA21-055A: Exploitation of Accellion File...
View ArticleFrench Regulator Lambasts Health Firms Over Mass Data Leak
Helene Fouquet reports: France’s privacy watchdog said it’s investigating the leak of sensitive health data on half a million people and said the companies involved could face heavy penalties if they...
View ArticleFormer Air Force Contractor Pleads Guilty to Illegally Taking 2,500 Pages of...
WASHINGTON – A former contractor with the U.S. Air Force pleaded guilty in the U.S. District Court, Southern District of Ohio today to illegally taking approximately 2,500 pages of classified...
View ArticleThe Jones Day dump contains prescription drug records. Who’s notifying those...
By now, many are aware that Jones Day, a giant law firm, had some of its files stolen due to vulnerabilities in the standalone file transfer administration system by Accellion. Jones Day is one of...
View ArticleIsraeli company engaged by Jamaica targeted by cyber crooks
Livern Barrett reports: The Jamaican Government, after months of silence, has disclosed that it has signed a five-year J$4-billion contract with the Israeli firm ELTA Systems Limited, but has sought to...
View ArticleYour personal data may have been compromised, Malaysia Airlines tells its...
Shahrin Aizat Noorshahrizam reports: National carrier Malaysia Airlines informed members of its frequent flyer programme Enrich that there had been a “data security incident” at one of its third-party...
View ArticleIn a year of supply-chain attacks, do you have your business associate...
I recently came across a breach report that is a useful reminder of the value of ensuring that business associate agreements (BAA) are in place, and that compliance with the agreements is assessed...
View ArticleSecurity breach prompts lockdown of some Manitoba student databases
Josh Crabb reports: Electronic databases that contain personal information about some Manitoba students have been temporarily shut down following a security breach. The Maplewood system is run by an...
View ArticleAllyAlign notifies 76,348 members and providers of ransomware attack
AllyAlign Health (AAH), a Medicare Advantage special needs plan administrator, recently notified 76,348 members and providers of an attempted ransomware attack. But how successful were the threat...
View Article