At a glance.
- The spy becomes the spied-upon.
- Genworth Financial suffers third-party data breach.
- Siemens and UCLA become latest victims of MOVEit bug.
The spy becomes the spied-upon.
Hackers have stolen data collected by aptly-named Android stalkerware LetMeSpy, and they’ve released it online. The developer of the app disclosed that on June 21 an intruder gained unauthorized access to the website’s data by exploiting a bug in the system. An alert on the LetMeSpy website reads, "As a result of the attack, the criminals gained access to email addresses, telephone numbers and the content of messages collected on accounts…In order to ensure security, all account-related functions of the website were disabled immediately after the incident was discovered. They will be restored after the vulnerability exploited by the attackers is removed. Additional measures will also be taken to increase the level of data security."
As the Register explains, LetMeSpy users can secretly install the app on a target’s phone, and it collects copies of messages, activity logs, and other data. Users of the app include government workers and US college students, and the stolen data include call logs, messages, geolocations, IP addresses, payment logs, user IDs, email addresses, and customer account password hashes. Although around ten thousand phones were registered for the spyware, not all of them appear to be compromised in the hack.
Genworth Financial suffers third-party data breach.
Insurance provider Genworth Financial has announced it was impacted in the data breach suffered by PBI Research Services, the Delaware News Journal reports. The third party vendor, which provides information services for Genworth, disclosed earlier this month that they;d been hit with a cyberattack, and according to the US state of Delaware’ Department of Insurance, it exposed the personal information of 2.5 to 2.7 million individuals, including about 8,000 Delaware residents. The attack, which occurred in May, is yet another casualty of the popular MOVEit file transfer breach that has impacted a growing list of companies worldwide. According to Delaware’s Insurance Commissioner Trinidad Navarro, the Genworth breach triggers the state’s Insurance Data Security Act and as a result will be thoroughly investigated and impacted individuals notified within sixty days.
Siemens and UCLA become latest victims of MOVEit bug.
US engineering firm Siemens and education institution the University of California, Los Angeles (UCLA) announced yesterday they are the latest institutions impacted by the data breach of MOVEit’s widely-used file transfer application. Reuters reports that Cl0p, the ransomware group that has claimed responsibility for the breach, had previously added Siemens and UCLA to the list of victims on its leak site. UCLA says it uses MOVEit to transfer files to university stakeholders. After discovering the breach on May 28, the higher ed institution patched the vulnerability and increased monitoring of the system. Siemens said operations will continue as usual and none of its critical data had been impacted. The two organizations have released few other details about the incident, but the US Federal Bureau of Investigation says it’s "aware of and investigating the recent exploitation of a MOVEit vulnerability by malicious ransomware actors." Dark Reading adds that digital automation firm Schneider Electric, pharmaceutical tech provider Werum, and biopharmaceutical company AbbVie were also added to Cl0p’s list of victims, though these organizations have not yet confirmed they were impacted.