BleepingComputer reports that Western Digital has begun notifying its customers regarding the theft of limited personal data following a cyberattack in March.
Threat actors were able to compromise on or around March 26 a Western Digital database copy with the online store customers' personal data, including their names, email addresses, billing and shipping addresses, hashed and salted passwords, and partial credit card numbers, said Western Digital in its data breach notification letter, which also noted the temporary suspension of online store account access, with restoration expected by the week of May 15.
Western Digital was reported by TechCrunch to have been attacked by an unnamed hacking operation, which claimed to exfiltrate 10TB worth of data and leveraged ALPHV/BlackCat ransomware group's data leak site for extortion purposes despite claiming that they were not affiliated with the gang.
While further threats of leaking Western Digital's data were made on April 28, attackers have not released more stolen data, indicating continued extortion efforts.
Officials at the City of Augusta, Georgia, have been noted by Mayor Garnett Johnson to have not communicated with the BlackByte ransomware operation that took credit for a cyberattack against the city that commenced on May 21, according to The Record, a news site by cybersecurity firm Recorded Future.
Attacks exploiting a zero-day in the MOVEit Transfer file transfer app to compromise various servers and facilitate data exfiltration efforts have been admitted by the Clop ransomware operation, also known as Lace Tempest, TA505, and FIN11, after the intrusions have been attributed to the group by Microsoft, reports BleepingComputer.
University of Waterloo in Canada has disclosed that its on-campus Microsoft Exchange servers have been impacted by an averted ransomware attack on May 30, according to The Record, a news site by cybersecurity firm Recorded Future.