#Tag
Schlimmer als zunächst gedacht: Der Firewallhersteller Sonicwall muss seine Einschätzung zum kürzlich gemeldeten Sicherheitsvorfall drastisch korrigieren. 🚨
Zum Artikel: https://heise.de/-10748910?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon
#Cybersecurity #Datenleck #Sonicwall #Ransomware #ITSicherheit
Schlimmer als zunächst gedacht: Der Firewallhersteller Sonicwall muss seine Einschätzung zum kürzlich gemeldeten Sicherheitsvorfall drastisch korrigieren. 🚨
Zum Artikel: https://heise.de/-10748910?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon
#Cybersecurity #Datenleck #Sonicwall #Ransomware #ITSicherheit
Breaking: Big #beer brewer belatedly believes bitten by ransomware—and likely a data breach.
#Japan’s biggest producer of beer is still not producing any beer this week. #Asahi Group Holdings shut down production Monday after detecting a cyber intruder.
And today it’s confirmed fears of #ransomware. In #SBBlogwatch, we dry out.
@TheFuturumGroup @TechstrongGroup @SecurityBlvd: https://securityboulevard.com/2025/10/japan-asahi-beer-ransomware-richixbw/?utm_source=richisoc&utm_medium=social&utm_content=richisoc&utm_campaign=richisoc
Breaking: Big #beer brewer belatedly believes bitten by ransomware—and likely a data breach.
#Japan’s biggest producer of beer is still not producing any beer this week. #Asahi Group Holdings shut down production Monday after detecting a cyber intruder.
And today it’s confirmed fears of #ransomware. In #SBBlogwatch, we dry out.
@TheFuturumGroup @TechstrongGroup @SecurityBlvd: https://securityboulevard.com/2025/10/japan-asahi-beer-ransomware-richixbw/?utm_source=richisoc&utm_medium=social&utm_content=richisoc&utm_campaign=richisoc
Yet another security problem plaguing #SonicWall customers.
The #Akira #ransomware gang have found a way to override the multifactor authentication in #SonicWall SSL VPN appliances. These scrotes appear to be able to move laterally from the VPN boxes to deploy ransomware.
It’s worrying that they’ve broken SonicWall’s #2FA. In #SBBlogwatch, we hear customers’ anger.
Yet another security problem plaguing #SonicWall customers.
The #Akira #ransomware gang have found a way to override the multifactor authentication in #SonicWall SSL VPN appliances. These scrotes appear to be able to move laterally from the VPN boxes to deploy ransomware.
It’s worrying that they’ve broken SonicWall’s #2FA. In #SBBlogwatch, we hear customers’ anger.
> 'You'll never need to work again': Criminals offer reporter money to hack BBC
In der #Schweiz hat es das erste #Gerichtsurteil zu den Pflichten des Arbeitgebers bei einem #Cyberangriff gegeben. Nachdem der Pharma-Konzern "Siegfried" 2021 von einem #Ransomware-Vorfall betroffen war, stellte sich die Frage, ob die Mitarbeiter die infolge des IT-Ausfalls nicht geleistete Arbeitszeit nachholen müssen.
Dagegen klagte nun ein betroffener #Arbeitnehmer und bekam vor einem Schweizer Obergericht Recht: Cyberangriffe sind #Betriebsrisiken des Arbeitgebers.
In der #Schweiz hat es das erste #Gerichtsurteil zu den Pflichten des Arbeitgebers bei einem #Cyberangriff gegeben. Nachdem der Pharma-Konzern "Siegfried" 2021 von einem #Ransomware-Vorfall betroffen war, stellte sich die Frage, ob die Mitarbeiter die infolge des IT-Ausfalls nicht geleistete Arbeitszeit nachholen müssen.
Dagegen klagte nun ein betroffener #Arbeitnehmer und bekam vor einem Schweizer Obergericht Recht: Cyberangriffe sind #Betriebsrisiken des Arbeitgebers.
¯\_(ツ)_/¯
「 The information stolen includes demographic data, names, addresses, dates of birth, Social Security numbers, health insurance information and other clinical information like health conditions, dialysis lab test results and treatment information 」
#ransomware #databreach #cybersecurity
https://therecord.media/davita-dialysis-company-ransomware-attack-data-breach-notifications
Finally!
> [UK] Public sector bodies and operators of critical national infrastructure, including the NHS, local councils and schools [are to] be banned from paying ransom demands to criminals
and
> businesses not covered by the ban would be required to notify the government of any intent to pay a ransom
https://www.gov.uk/government/news/uk-to-lead-crackdown-on-cyber-criminals-with-ransomware-measures
M&S head Archie Norman won’t say if he authorized #DragonForce #ransomware hacker payday.
British shopping titan M&S is still dealing with the mess caused by April’s #ransomware attack. There’s at least three months more work ahead says the firm’s chairman, Archie Norman (pictured).
But there are persistent rumors M&S paid #ScatteredSpider’s ransom demand. In #SBBlogwatch, Norman will neither confirm nor deny.
@TheFuturumGroup @TechstrongGroup @SecurityBlvd: https://securityboulevard.com/2025/07/marks-spencer-archie-norman-ransom-richixbw/
M&S head Archie Norman won’t say if he authorized #DragonForce #ransomware hacker payday.
British shopping titan M&S is still dealing with the mess caused by April’s #ransomware attack. There’s at least three months more work ahead says the firm’s chairman, Archie Norman (pictured).
But there are persistent rumors M&S paid #ScatteredSpider’s ransom demand. In #SBBlogwatch, Norman will neither confirm nor deny.
@TheFuturumGroup @TechstrongGroup @SecurityBlvd: https://securityboulevard.com/2025/07/marks-spencer-archie-norman-ransom-richixbw/
⚠️ IT company Ingram Micro says ransomware targeted internal systems
「 The company reported $48 billion in sales over the last fiscal year through its position as a connector between organizations and technology manufacturers that provide hardware, software and cloud services. Ingram Micro has more than 50 offices across the Americas, Europe, Asia and the Middle East 」
#ransomware #cyberattack #cybersecurity
https://therecord.media/ingram-micro-ransomware-attack
Ingram Micro have filed an 8-K for ransomware.
Some incredible wordsmithing here - rather than say when the incident began, they say when they issued a press release. Which was days later than when the incident began. I think this is because they missed SEC reporting deadlines.
https://www.sec.gov/ix?doc=/Archives/edgar/data/1897762/000162828025034372/ingm-20250705.htm
"Britain’s drug gangs and Moscow’s hackers were just two nodes in a vast criminal super-network [that] included sanctioned oligarchs, Russian intelligence operatives and an Irish crime family."
(and of course that network also now includes the #Trump administration, because Howard Lutnick is/was Tether's money manager)
* #TheEconomist: https://www.economist.com/1843/2025/07/04/how-tether-became-money-launderers-dream-currency
* no paywall: https://archive.ph/NiCRD
#moneylaundering #crime#corruption #crypto #cryptocurrency #iran #russia #uspol#howardLutnick #economist #economics #finance #uk #ukpol #garantex #threatintel #ransomware #cybersecurity #vladimirputin #oligarchs #putin #ukraine #kinahans #kinahan
2 and a bit days in and Ingram Micro still haven’t admitted what is happening, instead saying “Maintenance”
They’re both a large MSP and MSSP who sell anti-ransomware services.
"Britain’s drug gangs and Moscow’s hackers were just two nodes in a vast criminal super-network [that] included sanctioned oligarchs, Russian intelligence operatives and an Irish crime family."
(and of course that network also now includes the #Trump administration, because Howard Lutnick is/was Tether's money manager)
* #TheEconomist: https://www.economist.com/1843/2025/07/04/how-tether-became-money-launderers-dream-currency
* no paywall: https://archive.ph/NiCRD
#moneylaundering #crime#corruption #crypto #cryptocurrency #iran #russia #uspol#howardLutnick #economist #economics #finance #uk #ukpol #garantex #threatintel #ransomware #cybersecurity #vladimirputin #oligarchs #putin #ukraine #kinahans #kinahan
Cybercrime: Lösegeldverhandler zwackte sich wohl Provisionen ab
Ein für das Aushandeln von Lösegeld bei aussichtslosen Ransomware-Vorfällen angestellter Experte hat sich wohl Provisionen zahlen lassen.
A space for Bonfire maintainers and contributors to communicate
