LockBit ransomware hits Subway, Data Privacy Week begins | IT World Canada

January 22, 2024
1 min read

Tl;DR The cybercriminal group known as LockBit has targeted the Subway fast food chain, threatening to release stolen data on February 2nd. Meanwhile, Data Privacy Week has begun, prompting discussion about personal data collection and protection.

The LockBit ransomware gang hit the Subway fast food chain and has threatened to release hundreds of gigabytes of stolen data on February 2nd, including employee salaries and franchise records. Data centre provider Tietoevry experienced a ransomware attack on Friday, affecting some clients. A state-sponsored Russian group used a password spray attack to infiltrate a Microsoft test account and steal corporate emails. VMware was also recently discovered to have a Chinese threat group exploiting an out-of-bounds write vulnerability for a year and a half before the patch was released. Conor Brian Fitzpatrick, operator of the BreachForums marketplace, has been sentenced to 20 years of supervised release, while the MOVEit file transfer service has not lost many customers despite a vulnerability in 2023. Data Privacy Week has started, and a study by Consumer Reports highlights Facebook’s extensive collection of shopping information from various companies.

Latest from Blog

EU push for unified incident report rules

TLDR: The Federation of European Risk Management Associations (FERMA) is urging the EU to harmonize cyber incident reporting requirements ahead of new legislation. Upcoming legislation such as the NIS2 Directive, DORA, and