In case you were preoccupied with some sports event yesterday and missed some news:

B&G Foods was hit by Daixin Team. Not a huge data leak but the firm hasn't responded to inquiries about whether the locked files have created any problems for them, etc.

https://www.databreaches.net/b-files-leaked/

#databreach #cybersecurity #infosec #Daixin #ransomware

Multi-billion dollar food giant B&G Foods was hit by Daixin Team.

https://www.databreaches.net/b-files-leaked/

#databreach #dataprotection #ransomware #infosec #Daixin #cybersecurity

Well, Guardian Analytics never responded to my inquiry about two ransomware groups claiming them and leaking their data, but Daixin Team spokesperson says it's likely from their team sharing info on Guardian Analytics with other teams after Guardian didn't pay them. Makes sense, but now need to see if LockBit is just leaking the same data #Daixin leaked or if they've actually compromised Guardian Analytics and exfiltrated other data.

#LockBit #Daixin #Ransomware #infosec #cybersecurity #databreach #dataprotection

Here we go again. LockBit added Guardian Analytics to their leak site. If you hadn't seen it, Daixin Team had hit Guardian Analytics in January and leaked data from them on their site.

From screenshots, it looks like the two groups had access
within 24 hours of each other.

I look forward to hearing Guardian Analytic/NiceActimize's explanation...

#databreach #dataprotection #ransomware #infosec #cybersecurity #Daixin #LockBit

Daixin ransomware poses critical threat to healthcare, says AHA cyber chief.

“Quite frankly, the way the bad guys are getting in is they’re exploiting known and published vulnerabilities: they’re simply beating us to the patch,” said Riggi. Entities must work to expedite the patching processes, even though it’s difficult with medical devices."

https://www.scmagazine.com/analysis/ransomware/daixin-ransomware-poses-critical-threat-to-healthcare-says-aha-cyber-chief

#Daixin #ransomware #Databreach #dataprotection #patch #vulnerabilities

#AirAsia's parent company told to supply documents; Malaysian government probes #Daixin #ransomware attack:

https://www.databreaches.net/airasias-parent-company-told-to-supply-documents-government-probes-daixin-ransomware-attack/

This was the one where Daixin told me that AirAsia's security was so chaotic that their team refused to attack them again or pursue the attack more. I wonder if their comments, which were picked up globally by media outlets, are going to drive some of the investigation.

#DataBreach #infosec #cybersecurity #DataProtection #DaixinTeam

Security by incompetence - is this why we don't have even more security incidents? Whether this scales, however, is questionable...

Short article about the #Daixin attack on #AirAsia and the extremely poor security level according to Daixin - a funny report if it wasn't so bitter: https://www.databreaches.net/airasia-victim-of-ransomware-attack-passenger-and-employee-data-acquired/

#security #cybersecurity #cyberattack #breach

Network dumpster fire is my new defense tactic.
"The chaotic organization of the network, the absence of any standards, caused the irritation of the group and a complete unwillingness to repeat the attack."
https://www.databreaches.net/airasia-victim-of-ransomware-attack-passenger-and-employee-data-acquired/
#databreach #ransomware #Daixin #AirAisa

RT @heisec@twitter.com

l+f: Wer sein Netzwerk unsicher konfiguriert, muss keine Attacken befürchten https://www.heise.de/news/l-f-Wer-sein-Netzwerk-unsicher-konfiguriert-muss-keine-Attacken-befuerchten-7350342.html #Daixin #Ransomware

🐦🔗: https://twitter.com/heisec/status/1595408357753589761

#Daixin #Ransomware Gang Steals 5 Million #AirAsia Passengers' and Employees' Data https://thehackernews.com/2022/11/daixin-ransomware-gang-steals-5-million.html