Security Leftovers
-
Car thieves are using increasingly sophisticated methods, and most new vehicles are vulnerable
-
Security updates for Monday
Security updates have been issued by Debian (chromium, cpio, mariadb-10.3, nbconvert, sofia-sip, and wireshark), Fedora (ImageMagick, mingw-python-requests, openssl, python3.6, texlive-base, and webkitgtk), Red Hat (apr-util, git, gnutls, kernel, kernel-rt, and kpatch-patch), Slackware (cups and ntp), and Ubuntu (linux-azure-fde, linux-azure-fde-5.15 and perl).
-
Canopy Children’s Solutions continues to investigate ransomware attack in April
In early May, a new group of threat actors known as Nokoyawa added Canopy Children’s Solutions in Mississippi to their leak site. On June 2, Mississippi Children’s Home Society, CARES Center, Inc., Mississippi Children’s Home Services, Inc., d.b.a. Canopy Children’s Solutions (“Canopy”) a press release acknowledging that on April 4, they experienced an attack that encrypted some of their files.
Canopy hasn’t yet notified any individuals. They state they are in the process of “conducting a comprehensive and thorough review to identify any personal information contained therein, and to whom that information relates. Once the review is complete, Canopy will move as quickly as possible to mail letters to individuals whose information may be affected and provide detail about the types of information at issue for each individual.”
-
South Jersey Behavioral Health Resources discloses ransomware attack
South Jersey Behavioral Health Resources has disclosed that they were hit with a ransomware attack on April 3. They do not indicate what group attacked them, or what any ransom demand may have been, and DataBreaches has not seen this incident on any leak site to date.
According to their notification, “The investigation remains ongoing, and at this time, SJBHR is unaware if any data related to individuals was subject to unauthorized access and/or acquisition.” They say they are notifying in — wait for it: “an abundance of caution.” The types of personal information that SJBHR maintains on its systems that could potentially be involved include an individual’s name and contact information, Social Security number, date of birth, medical record number, treating/referring physician, health insurance information, subscriber number, medical history information, diagnosis/treatment information.
-
Can Exposed[.]vc attract BreachForum’s loyal users? It’s trying to.
When RAIDForums was seized by law enforcement in 2022, one of the forum users, Pompompurin, stepped up and opened BreachForums based on the RAIDForums design and policies. And when BreachForums was taken down by an administrator after Pompompurin was arrested and databases were seized, forum users waited for the administrator, “Baphomet,” to create a new and secure forum for them. But more than two months later, there has been no replacement forum for BreachForums, although there have been some attempts, like the short-lived Vice Forums that went up quickly in March but was taken down after one hour due to security issues. It never came back as a real forum.