At a glance.
- Hitachi data compromised in GoAnywhere attack.
- The price of fashion...is apparently $500 in Bitcoin.
- Ransomware gang says they attack Mazars Group.
- San Diego Unified School District confirms 2022 incident exposed student data.
Hitachi data compromised in GoAnywhere attack.
Hitachi Energy, a Swiss division of the Japanese tech giant Hitachi Group, has disclosed it was one of the many organizations impacted by the recent ransomware attack targeting Fortra’s GoAnywhere managed file transfer platform. Fortra is one of Hitachi’s third-party software providers, and while the company says that employee data were exposed in the cybersecurity incident, they have not specified exactly which data were involved. Upon learning of the breach, Hitachi disconnected its own systems from Fortra’s and enlisted the help of third-party data security specialists to investigate the scope of the incident. JDSupra reports that the company began notifying impacted employees last week.
The price of fashion...is apparently $500 in Bitcoin.
Three hackers have posted a database on the dark web allegedly containing data stolen from Zivame, a leading women’s apparel retailer based out of India. India Today spoke with one of the cybercriminals in question, who is asking for $500 in cryptocurrency for the personal details of 1.5 million Zivame customers. The stolen data include names, email addresses, street addresses, and phone numbers.
Ransomware gang says they attacked Mazars Group.
The ALPHV/BlackCat ransomware group claims it has stolen over 700 GB of sensitive data from Mazars Group, an international professional services provider based in Paris, France. Although Cybernews reports that Mazars hasn’t yet confirmed the data breach, the hackers say the exfiltrated data include business agreements and financial records. First observed in 2021, BlackCat is a Russia-linked cybergang that operates a ransomware-as-a-service (RaaS) business and is known for its use of the Rust programming language.
San Diego Unified School District confirms 2022 incident exposed student data.
The San Diego Unified School District, located in the US state of California, has confirmed that a breach in October 2022 compromised student medical data. When the incident was first detected, GovTech recounts, the district notified parents that an intruder had infiltrated some of its systems, but that the district was not yet able to determine which data were accessed. Now, in a letter sent to families earlier this month, executive director of risk services for the district Dennis Monahan said that further investigation has revealed that the names and medical info of students were exposed. Both staff and students have been issued new account passwords, and additional security measures have been implemented by district officials. The district has not disclosed how many students were affected, and spokesperson Maureen Magee said that the investigation is ongoing.