Tag Archive for: $200K

73 Million AT&T Users’ Data Leaked As Hacker Said, ‘I Don’t Care If They Don’t Admit. I’m Just Selling’ Auctioned At Starting Price Of $200K – AT&T (NYSE:T)

/in


Telecommunications giant AT&T Inc. T recently disclosed a significant data breach dating back to 2021 that resulted in the exposure of sensitive information belonging to 73 million users and is now circulating on the dark web.

The leaked data includes a wealth of personal details such as Social Security numbers, email addresses, phone numbers and dates of birth, affecting both current and former account holders. AT&T revealed that among the impacted people, 7.6 million are current account holders.

“Currently, AT&T does not have evidence of unauthorized access to its systems resulting in exfiltration of the data set. The company is communicating proactively with those impacted and will be offering credit monitoring at our expense where applicable,” AT&T said in its press release about the situation. 

Don’t Miss: 

The hacker behind this brazen cyberattack is ShiningHacker, a notorious figure known for previous data breaches targeting platforms such as Wattpad, Tokopedia, and Microsoft Corp.’s GitHub, according to Bleeping Computer.

Initially, AT&T denied any internal data breach when a small portion of the stolen data surfaced in 2021, claiming no knowledge of leaked information from their servers or vendors. 

However, subsequent investigations revealed a different story. While AT&T refuted the claims initially, ShiningHacker admitted to the breach, dismissing AT&T’s stance with the assertion, “I don’t care if they don’t admit. I’m just selling,” according to Bleeping Computer.

The hacker attempted to monetize the stolen data by offering it for sale on the RaidForums data theft forum, setting the starting price at $200,000 and accepting incremental offers of $30,000. ShiningHacker indicated a willingness to immediately sell the data for $1 million, underscoring the severity and audacity of the cybercrime.

Trending: Long overdue disruption in the moving industry is underway. Here’s how to invest in it with just $100.

Telecommunications providers have become recent targets of cyberattacks, with T-Mobile facing a breach in 2023 affecting 37 million customers, and Verizon Communications Inc. experiencing a leak impacting 63,000 customers and employees.

In December, the Federal…

Source…

Hackers obtain personal data from 200K+ in southern Nevada casino data breach, class-action lawsuit says

/in


Class-action lawsuit filed after 2022 data breach

LAS VEGAS (KLAS) — A class-action lawsuit filed Wednesday alleges a southern Nevada casino’s computer systems were left vulnerable to a cyberattack, leaving the personal information of more than 200,000 customers and employees exposed, court documents said.

A hacker was able to access the sensitive information involving Rancho Mesquite Casino over several days in November 2022, documents said. Information accessed included full names and Social Security numbers.

The company operates the Rising Star Sports Ranch Resort in Mesquite, the Eureka Casino in Las Vegas and The Brook in Seabrook, New Hampshire, its website said. Two of the company’s properties were affected, documents said.

The class action, filed in Las Vegas court, alleges the company failed to provide “to provide timely and adequate notice” about the breach. The originating plaintiff is a California resident who said his computer was part of a ransomware attack, documents said.

A document in the filing, provided by authorities in Maine, said the company mailed notices of the breach in December 2022. The company was offered a dedicated phone line and one year of credit monitoring.

“On November 9, 2022, Eureka experienced a cybersecurity incident during which some of our systems were encrypted by an unauthorized actor,” a letter sent to those affected by the breach and included in the filing said. “Upon discovering the incident, we immediately took steps to secure our systems, began an investigation, and a cybersecurity firm was engaged to assist. Although the investigation is ongoing, we identified certain data that the unauthorized actor accessed during the incident. We began a review of the data and identified that the data included some of your information. Specifically, the data included your name and Social Security number.”

The lawsuit alleges the company failed to encrypt the sensitive information.

“Simply put, plaintiff and class members now face substantial risk of out-of-pocket fraud losses such as loans opened in their names, medical services billed in their names, tax return fraud, utility bills opened in…

Source…

Hackers Demand $200K from Washington Port to Unlock Data

/in


(TNS) — Hackers are demanding a $200,000 ransom after placing an encryption lock on the Port of Kennewick’s computer servers and files, the port said Tuesday.

Under the direction of the Federal Bureau of Investigation and advice from technology professionals, the port will not be paying the ransom.

There is no guarantee that hackers would deliver an encryption key to restore access if the port were to pay, it said.

Instead, it is working with the FBI and restoring the functioning of the port’s technology system, including rebuilding digital files from offline backups and bringing back access to the port’s email server, which is currently offline.

The port’s technology contractor does not believe that individual data has been compromised.

The goal of the attack appears to be to lock the servers to persuade the port to pay a ransom rather than accessing the information on the servers, according to the port.

The cyber attack was sophisticated, using “military-grade encryption,” according to the port. Neither the FBI or the Washington state Office of Cyber Security know of a decoder for it.

The port’s information technology contractor expected to work through the night Tuesday to restore email functioning by Wednesday. Re-establishing off-line data will take longer — likely a matter of days — in part because the contractor has been providing information requested by the FBI.

Along with restoration of the computer data, additional security and protection will be added to the port’s system.

The cost of recovering from the cyber attack will depend on the time needed for the contractor to repair damage.

Tana Bader Inglima , the port’s deputy chief executive, said the port has made regular upgrades to the port’s servers and its security and anti-virus software through its information technology contractor and…

Source…

Hackers demand $200K ransom to unlock computer data at Wash. port

/in


Hackers are demanding a $200,000 ransom after placing an encryption lock on the Port of Kennewick's computer servers and files, the port said Tuesday.

Hackers are demanding a $200,000 ransom after placing an encryption lock on the Port of Kennewick’s computer servers and files, the port said Tuesday.

(Image courtesy bigstockphoto.com)

Nov. 18—Hackers are demanding a $200,000 ransom after placing an encryption lock on the Port of Kennewick’s computer servers and files, the port said Tuesday.

Under the direction of the Federal Bureau of Investigation and advice from technology professionals, the port will not be paying the ransom.

There is no guarantee that hackers would deliver an encryption key to restore access if the port were to pay, it said.

Instead, it is working with the FBI and restoring the functioning of the port’s technology system, including rebuilding digital files from offline backups and bringing back access to the port’s email server, which is currently offline.

The port’s technology contractor does not believe that individual data has been compromised.

The goal of the attack appears to be to lock the servers to persuade the port to pay a ransom rather than accessing the information on the servers, according to the port.

The cyber attack was sophisticated, using “military-grade encryption,” according to the port. Neither the FBI or the Washington state Office of Cyber Security know of a decoder for it.

The port’s information technology contractor expected to work through the night Tuesday to restore email functioning by Wednesday. Re-establishing off-line data will take longer — likely a matter of days — in part because the contractor has been providing information requested by the FBI.

Along with restoration of the computer data, additional security and protection will be added to the port’s system.

The cost of recovering from the cyber attack will depend on the time needed for the contractor to repair damage.

Tana Bader Inglima, the port’s deputy chief executive, said the port has made regular upgrades to the port’s servers and its security and anti-virus software through its information technology contractor and with the guidance of an IT consultant.

The consultant advises the port on computer technology and helps provide contractor oversight.

___

(c)2020 Tri-City Herald (Kennewick, Wash.)

Visit Tri-City…

Source…