Tootfinder

Great little story here about how a small town in Spain was hit with a ransomware attack, with the attackers demanding $5,000 in Bitcoin.
The town told the obviously small-time cybercriminals to go pound sand because they had sufficient backups to restore everything.
https://www.cryptopolitan…

I thought this was pretty funny. Awkward dinner parties.
Hopefully no paywall, gift article.
https://www.theatlantic.com/newsletters/20

A 2025 Ranking You Won’t Read Anywhere Else
Salmon with Abraham Lincoln and Jesus, plus other hypothetical dinner parties from The Katie Miller Podcast

A lot happened over the weekend. Check out today's Metacurity for the most critical infosec developments you might have missed, including
--Proposed Israeli cyber law calls for cyber incident reporting in real time,
--Russia is likely the source of wiper malware that targeted Poland's energy sector,
--Russian national pleads guilty to targeting 50 victims with ransomware,
--DPRK group Konni is targeting blockchain engineers with malware,
--Critical flaw i…

Proposed Israeli cyber law calls for cyber incident reporting in real time
Russia is likely the source of wiper malware that targeted Poland's energy sector, Russian national pleads guilty to targeting 50 victims with ransomware, DPRK group Konni is targeting blockchain engineers with malware, Critical flaw in Solana's validator client fixed, much more

https://www.computerweekly.com/news/366634571/Russian-money-launderers-bought-a-bank-to-disguise-ransomware-profit
Russian money launderers bought a bank to disguise ransomware profit

Russian money launderers bought a bank to disguise ransomware profit
A billion-dollar money laundering network active in the UK funnelled money, including the profits of ransomware attacks, into its own bank to circumvent sanctions on Russia and help fund its attacks on Ukraine

Ukrainian national Artem Aleksandrovych Stryzhak pleaded guilty to his role in launching Netflix ransomware attacks. He faces a maximum penalty of ten years in prison.
https://www.justice.gov/opa/pr/ukrainian-national-…

Ukrainian National Pleads Guilty to Conspiracy to Use Nefilim Ransomware to Attack Companies in the United States and Other Countries
A Ukrainian national pleaded guilty today to one count of conspiracy to commit computer fraud for his role in a series of international ransomware attacks.

So many publications are reporting RansomHouse's claim that it had hacked a key Apple contractor, Luxshare. This morning I saw at least twelve publications reporting, so I posted about it too.
But as HackRead notes, it's just a claim by a criminal group with no confirmation. "Nevertheless, until Luxshare confirms an incident or the attackers release verifiable data, the claim remains just that."
I really wish cyber and tech publications would stop doing this --…

RansomHouse Claims Data Breach at Major Apple Contractor Luxshare
Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

The US and the UK and Australia are going after bulletproof hosting companies.
United States, Australia, and United Kingdom Sanction Russian Cybercrime Infrastructure Supporting Ransomware
https://home.treasury.gov/news/press-releases/sb0319

United States, Australia, and United Kingdom Sanction Russian Cybercrime Infrastructure Supporting Ransomware
.caption > figcaption { text-align: center; font-style: italic; } WASHINGTON — Today, the Department of the Treasury’s Office of Foreign Assets Control (OFAC), Australia’s Department of Foreign Affairs and Trade, and the United Kingdom’s Foreign Commonwealth and Development Office are announcing coordinated sanctions targeting Media Land, a Russia-based bulletproof hosting (BPH) service provider, for its role in supporting ransomware operations and other forms of cybercrime.  OFAC is a…

My sister used to teach courses for the University of Phoenix. Ugh.
University of Phoenix data breach impacts nearly 3.5 million individuals
https://www.bleepingcomputer.com/news/security/university-of-phoenix-data-…

University of Phoenix data breach impacts nearly 3.5 million individuals
The Clop ransomware gang has stolen the data of nearly 3.5 million University of Phoenix (UoPX) students, staff, and suppliers after breaching the university's network in August.

Don't miss today's Metacurity for a concise round-up of the most critical infosec developments you should know, including
--UK's NCSC warns of Russian-aligned hacktivist groups,
--UK and China enter a forum to discuss cyberattacks,
--Makina Finance lost $4.2m in an exploit,
--Ingram Micro report ransomware attack affecting 42k,
--Minnesota DHS breach affected 304k,
--SK Telecom appeals $91m fine,
--NexShield malvertising campaign crashes b…

UK's NCSC warns of Russian-aligned hacktivist groups
UK and China enter a forum to discuss cyberattacks, Makina Finance lost $4.2m in an exploit, Ingram Micro report ransomware attack affecting 42k, Minnesota DHS breach affected 304k, SK Telecom appeals $91m fine, NexShield malvertising campaign crashes browsers, much more

A very unfortunate headline.