Interbank confirms data breach following failed extortion, data leak
- Interbank, a major financial institution in Peru, has confirmed a data breach following an attempted extortion by a hacker who leaked stolen data online.
- The breach involved unauthorized access to customer information, with the threat actor, known as “kzoldyck,” claiming to have stolen data from over 3 million customers.
- This includes sensitive details such as full names, account IDs, birth dates, addresses, phone numbers, email addresses, credit card information, and plaintext credentials.
- Interbank stated that they have implemented additional security measures in response to the breach and assured customers that their deposits remain secure.
Massive data breach exposes 800,000 insurance customers’ personal information
- Landmark Admin, an insurance administrative services company, has reported a significant data breach affecting over 800,000 individuals following a cyberattack in May 2024.
- The breach compromises sensitive information, including names, Social Security numbers, driver’s license numbers, and bank details, as Landmark partners with major insurance carriers in the U.S.
- The company detected unusual activity on May 13 and took immediate action to secure its systems, but hackers managed to re-enter on June 17.
- An investigation revealed that both encrypted and unencrypted data had been stolen.
- Landmark is offering free identity theft protection services to those affected and is notifying impacted individuals through mail.
LA housing authority confirms breach claimed by Cactus ransomware
- The Housing Authority of the City of Los Angeles (HACLA) has confirmed a cyberattack on its IT network, which has been claimed by the Cactus ransomware gang.
- HACLA, one of the largest public housing authorities in the U.S., administers over 32,000 public housing units and operates on an annual budget exceeding $1 billion.
- Following the attack, HACLA engaged external forensic IT specialists to investigate and respond to the incident.
- While the authority has stated that its systems remain operational and committed to providing services, it has not disclosed when the breach was detected or whether sensitive data was compromised.
- Cactus ransomware claims to have stolen 891 GB of data during the attack, including personal identifiable information, database backups, financial documents, and employee data.
- The gang has already published some evidence of the stolen data on their leak site.
Medusa Ransomware Hack of Pathology Lab Affects 1.8 Million
- Medusa ransomware has targeted a pathology lab in the U.S., impacting approximately 18 million patients.
- The breach occurred when the attackers infiltrated the lab’s systems, leading to the theft of sensitive patient data, including names, Social Security numbers, and medical records.
- The lab, which provides diagnostic services to various healthcare providers, reported the incident after discovering unauthorized access to its network.
- The attackers demanded a ransom for the stolen data, and while the lab has not disclosed whether it paid the ransom, it has taken steps to enhance its cybersecurity measures following the attack.
Cisco says DevHub site leak won’t enable future breaches
- Cisco has addressed a recent incident involving a leak from its public-facing DevHub portal, confirming that the exposed non-public files do not contain information that could facilitate future breaches.
- The leaked documents included data intended for customers and some files related to CX Professional Services customers, which were mistakenly made public due to a misconfiguration.
- Cisco has since corrected this configuration issue and restored access to the DevHub site, emphasizing that no financial data or personal information was compromised.