At a glance.
- Breach roundup.
- Hackers steal more than hearts.
Bank Info Security offers a roundup of recent cyberincident news, including the arrest in Ukraine of a man accused of selling the personal data of over 300 million individuals. The Cyber Police of Ukraine allege that the man used closed groups and channels in Telegram to target customers “using currencies prohibited on the territory of Ukraine" in order to steal personal information including Ukrainian and European passport details, taxpayer and driver's license numbers, bank account data, and birth certificates.
In the US, Fincantieri Marinette Marine, a defense and commercial shipbuilder based in the state of Wisconsin suffered a ransomware attack earlier this month that impacted servers storing data used to feed instructions to machining tools for the US. The attack shut down the servers for several days, and the company says, "Repair and construction operations continue at all three U.S. shipyards, however the company's email and some networked operations remain offline for now.”
In India, the infamous LockBit ransomware gang has taken credit for an attack on Indian non-bank lender Fullerton India, and the extortionists say if they don’t receive a $3 million payment by Saturday, they will release more than 600 gigabytes of stolen financial data.
Leading Kenyan supermarket chain Naivas disclosed it also suffered a ransomware attack that exposed customer data, and the BlackCat threat group announced on its leak site that it’s behind the theft. Willy Kimani, chief commercial officer at Naivas, says the company is aware of BlackCat’s claims and "we and law enforcement agencies are monitoring this closely.”
Hackers steal more than hearts.
Troy Hunt, the founder and maintainer of the data breach alerting website Have I Been Pwned, says he was informed that hackers infiltrated two dating websites. The attackers made off with email addresses, direct messages, profile pics, sexual orientation, dates of birth and other personal data from users on sites CityJerks and TruckerSucker. User passwords were also among the stolen data, scrambled with a weak algorithm that could potentially be decrypted by cybercriminals. Hunt told TechCrunch, “It’s really just a typical forum breach, albeit with super sensitive content.” This content, which includes graphic messages sent by users, has been advertised for sale on a hacking forum, and the seller says it includes info on 8,000 TruckerSucker users and 77,000 CityJerks users. The platform administrators have so far ghosted reporters seeking comment.