TechSpot: Malware-packed pirated games infected millions of PCs, stealing data and hijacking webcams to photograph users

TechSpot: Malware-packed pirated games infected millions of PCs, stealing data and hijacking webcams to photograph users. “If you’re ever tempted to download a pirated game or app, remember that in addition to being illegal, there’s the risk of it containing some nasty malware. Millions of PCs were infected with a trojan virus using this method, leading to the theft of over 1TB of data, including email addresses, login credentials, and documents. It was even able to hijack a webcam and photograph users.”

Bleeping Computer: Swedish Health Agency shuts down SmiNet after hacking attempts

Bleeping Computer: Swedish Health Agency shuts down SmiNet after hacking attempts. “The Swedish Public Health Agency (Folkhälsomyndigheten) has shut down SmiNet, the country’s infectious diseases database, on Thursday after it was targeted in several hacking attempts. SmiNet, which is also used to store electronic reports with statistics on COVID-19 infections, was shut down on Thursday to investigate the attacks and was brought back online on Friday evening.”

The New Yorker: How to Negotiate with Ransomware Hackers

The New Yorker: How to Negotiate with Ransomware Hackers. “The F.B.I. advises victims to avoid negotiating with hackers, arguing that paying ransoms incentivizes criminal behavior. This puts victims in a tricky position. ‘To just tell a hospital that they can’t pay—I’m just incredulous at the notion,’ Philip Reiner, the C.E.O. of the nonprofit Institute for Security and Technology, told me. ‘What do you expect them to do, just shut down and let people die?’ Organizations that don’t pay ransoms can spend months rebuilding their systems; if customer data are stolen and leaked as part of an attack, they may be fined by regulators.”

WUSA: Hackers demand $4 million ransom from DC police, as more officers’ confidential info posted to the dark web

WUSA: Hackers demand $4 million ransom from DC police, as more officers’ confidential info posted to the dark web. “In the latest escalation of an unprecedented cyber-attack against U.S. law enforcement, hackers belonging to the Russian-speaking Babuk syndicate posted a $4 million ransom demand against the Metropolitan Police Department on the dark web. The demand came as more D.C. police officers received notice their confidential information was included within the scope of the April hack.”

Miami Herald: Hackers post online thousands of Broward schools files, including student, teacher info

Miami Herald: Hackers post online thousands of Broward schools files, including student, teacher info . “Hackers who broke into Broward County Public Schools’ computer system last month made good on their threat this week to release thousands of files that they stole from the district. The group, known as Conti, published almost 26,000 files on its website, which threatens other businesses and organizations they target that unless they pay ransoms, their files, which may contain personal information, will be released as well.”

Indictment: Kansas Man Indicted For Tampering With A Public Water System (Department of Justice)

Department of Justice: Indictment: Kansas Man Indicted For Tampering With A Public Water System . “The indictment alleges that on or about March 27, 2019, in the District of Kansas, [Wyatt] Travnichek knowingly accessed the Ellsworth County Rural Water District’s protected computer system without authorization. During this unauthorized access, it is alleged Travnichek performed activities that shut down the processes at the facility which affect the facilities cleaning and disinfecting procedures with the intention of harming the Ellsworth Rural Water District No. 1, also known as Post Rock Rural Water District.”

SC Magazine: Policyholders may be the primary target in hack of cyber insurance provider CNA

SC Magazine: Policyholders may be the primary target in hack of cyber insurance provider CNA. “Insurance firm CNA Financial, a prominent provider of cyber insurance, confirmed a cyberattack against its systems, which has some concerned that cybercriminals may target policyholders. Cybercriminals generally know that companies represented by a cyber insurance company are more likely to pay a large ransomware demand than an uninsured business that doesn’t have the financial backing.”