AutoCanada, a major Canadian car dealership, this week disclosed a cyberattack that may result in some disruptions. The incident was discovered on August 11 and it impacted some internal IT systems, the company said. "Immediately upon detecting the incident, AutoCanada took action to safeguard its network and data. This included engaging with leading cybersecurity experts to assist us with containment and remediation efforts. READ MORE...
Hackers recently stole data from Ohio's largest city, but what they got was not usable and no personal information about city workers was made available online, the mayor said. Columbus Mayor Andrew Ginther confirmed the data breach and noted Tuesday that the city never received a ransom request. The city learned Friday that most of the data published to the dark web by the ransomware group Rhysida was corrupted or encrypted, he said. READ MORE...
Hackers linked to Iran's Islamic Revolutionary Guard Corps targeted the Trump and Biden presidential campaigns amid increased phishing attacks against U.S. and Israeli officials and institutions, according to a new report from Google's Threat Analysis Group. Google TAG researchers saw "small but steady" attempts by IRGC this election cycle to steal credential information from people associated with President Joe Biden and former President Donald Trump. READ MORE...
A new extortion gang called Mad Liberator uses social engineering and the remote-access tool Anydesk to steal organizations' data and then demand a ransom payment, according to Sophos X-Ops. The incident response team observed the cyber crime crew first emerged in mid-July. And while Sophos X-Ops calls it a ransomware group, it has not seen any data encryption linked to Mad Liberator - just data exfiltration. READ MORE...
The total number of DDoS attacks during H1 2024 amounted to 830,000, an increase of 46% when compared to H1 2023, according to Gcore. Peak attack power rose from 1.6 terabits per second (Tbps) in H2 2023 to 1.7 Tbps. UDP floods made up 61% of DDoS attacks, while TCP floods and SYN floods constituted 18% and 11% of the total respectively. The most-attacked business sectors were gaming (49%), technology (15%), financial services (12%) and telecommunications (10%). READ MORE...
The threat actor behind a major attack on Indonesian government services is just one manifestation of an operation going by at least three other names. On June 20, a ransomware operation known as "Brain Cipher" bit off more than it could chew when it locked up Indonesia's national data center. Hours-long lines began to form across the country as ferry passengers waited for booking systems to come back online, and international arrivals stood frozen at passport verification kiosks. READ MORE...
?Georgy Kavzharadze, a 27-year-old Russian national, has been sentenced to 40 months in prison for selling login credentials for over 300,000 accounts on Slilpp, the largest online marketplace of stolen logins, until its seizure in June 2021. In a Wednesday press release, the U.S. Department of Justice said that Kavzharadze (also known as TeRorPP, Torqovec, and PlutuSS) sold vast amounts of financial information and other personally identifying information (PII) on the illegal marketplace. READ MORE...
Professional cycling has, in its recent history, been prone to a shocking variety of cheating methods and dirty tricks. Performance-enhancing drugs. Tacks strewn on race courses. Even stealthy motors hidden inside of wheel hubs. Now, for those who fail to download a software patch for their gear shifters-yes, bike components now get software updates-there may be hacker saboteurs to contend with, too. READ MORE...