Security Leftovers
-
Why Ransomware in Education on the Rise and What That Means for 2023 [Ed: Microsoft Windows TCO]
The breach of LA Unified School District (LAUSD) highlights the prevalence of password vulnerabilities, as criminal hackers continue to use breached credentials in increasingly frequent ransomware attacks on education.
-
CISA Warns of Daixin Team Hackers Targeting Health Organizations With Ransomware
One of those attacks was aimed at OakBend Medical Center on September 1, 2022, with the group claiming to have siphoned roughly 3.5GB of data, including over one million records with patient and employee information.
-
SideWinder APT Using New WarHawk Backdoor to Target Entities in Pakistan
The shellcode then decrypts and loads Beacon, the default malware payload used by Cobalt Strike to establish a connection to its command-and-control server.
-
iTWire - Optus yet to pay even one cent towards replacing users' passports
More than a month after it announced a major data breach, telco Singtel Optus is yet to pay a single dollar towards the costs of replacing the passports of users whose data was leaked. iTWire understands that close to 100,000 passports have been listed for protection.
The telco confirmed that replacement costs had yet to be paid, responding to a query from iTWire by saying the process for reimbursing users the cost of replaced passports was still being finalised and customers would be updated as soon as possible.
On 14 October, Optus said in a statement to the Singapore Stock Exchange that customers, whose passport numbers were exposed in the catastrophic breach suffered by the telco, did not need to get the documents replaced.
It said this advice was being issued after discussions with the Federal Government. The government has been mum about the change of tack; Prime Minister Anthony Albanese said on 28 September, six days after the breach announcement, that he had told Optus it must pay the costs for customers who want to replace their passports if their data was caught up in the breach.
Two days later, Albanese tweeted: "After actions taken by myself, @SenatorWong and @ClareONeilMP, Optus has agreed to pay for replacement passports for those affected by the data breach."