Colleges and schools across US dealing with ransomware incidents, cyberattacks
Source: The Record
Thousands of students at several U.S. schools started the week feeling the impact of ransomware attacks and other cybersecurity incidents. Bluefield University — a private Baptist school in Bluefield, Virginia serving about 1,000 students – published a statement on Sunday announcing that their systems “have been shut down for an unknown period of time due to a recent cybersecurity attack.” Two hours away across the border in West Virginia, BridgeValley Community and Technical College said it continued to deal with a ransomware attack that is now believed to be the work of the Akira cybercrime gang.
T-Mobile discloses second data breach since the start of 2023
Source: Bleeping Computer
T-Mobile disclosed the second data breach of 2023 after discovering that attackers had access to the personal information of hundreds of customers for more than a month, starting late February 2023. Compared to previous data breaches reported by T-Mobile, the latest of which impacted 37 million people, this incident affected only 836 customers. Still, the amount of exposed information is highly extensive and exposes affected individuals to identity theft and phishing attacks.
Ransomware Hackers Exploit PaperCut Bugs
Source: Data Breach Today
An affiliate of the Russian-speaking Clop ransomware-as-a-service gang and the LockBit cybercrime group are each actively exploiting vulnerabilities in popular print management software.
Many Public Salesforce Sites are Leaking Private Data
Source: KrebsonSecurity
A shocking number of organizations — including banks and healthcare providers — are leaking private and sensitive information from their public Salesforce Community websites, KrebsOnSecurity has learned. The data exposures all stem from a misconfiguration in Salesforce Community that allows an unauthenticated user to access records that should only be available after logging in.
Hackers Exploit TP-Link N-Day Flaw to Build Mirai Botnet
Source: Data Breach Today
Hackers are attempting to infect a consumer-grade Wi-Fi router model with Mirai botnet malware following the discovery of zero-days in the device in a December hacking competition.