AboutDFIR.com – The Definitive Compendium Project
Digital Forensics & Incident Response

Blog Post

InfoSec News Nuggets 04/11/2023

KFC, Pizza Hut owner discloses data breach after ransomware attack 

Yum! Brands, the brand owner of the KFC, Pizza Hut, and Taco Bell fast food chains, is now sending data breach notification letters to an undisclosed number of individuals whose personal information was stolen in a January 13 ransomware attack. This comes after the company said that although some data was stolen from its network, it has no evidence that the attackers exfiltrated any customer information. In the breach notification letters sent to affected people starting Thursday, Yum! Brands revealed that it has now found out the attackers stole some individuals’ personal information, including names, driver’s license numbers, and other ID card numbers. 


Inside FTX: Jokes about misplaced funds, diabolical IT, poor oversight, and worse 

The liquidators picking over the remains of FTX have released their first formal report into the collapse of Sam Bankman-Fried’s empire – and it somehow appears things are even worse than was initially believed. The 39-page dossier [PDF] details an organization with little to no oversight of its own operations, and leadership that stifled dissent, commingled funds, lied to investors and the public, and routinely misplaced millions of dollars belonging to customers. 


Alcasec Hacker, aka “Robin Hood of Spanish Hackers,” Arrested 

The most wanted Spanish hacker “Alcasec,” also known as the “Robin Hood of Spanish Hackers,” has been arrested in Madrid, Spain. The 19-year-old hacker, Jose Luis Huertas, was apprehended by Spanish police for allegedly hacking and stealing the sensitive data of millions of taxpayers from the national revenue service. Huertas, who went by the aliases Alcasec and Mango, was booked by the police for stealing sensitive data of over 575,000 taxpayers. Spanish law enforcement authorities classified him as one of the country’s most notorious hackers believed to have expertise in money laundering and cyber assets. Authorities have kept him in custody as the judge declared him a flight risk. 


FBI warns of public ‘juice jacking’ charging stations that steal your data. How to stay protected 

The next time you consider using one of those free charging stations at the airport, hotel, or shopping center, it would be in your best interest to think twice. The dangers of public USB charging stations are not new — there’s even a name tied to the act: “juice jacking,” and a product that came out of it: a USB condom But the FBI is now making it clear that you should avoid the suspiciously free power services in your local area for good. 



An unknown number of Uber drivers have been informed by a legal firm that represents Uber Technologies that sensitive data, including their identities and Social Security numbers, has been taken by cyberattackers. This data includes the drivers’ names. The world’s largest ride-sharing company has suffered its third data hack in the last half a year. According to a letter that was posted online on April 4, the Newark, New Jersey-based law firm Genova Burns LLC was the first to notice suspicious activity at the end of January. Following an investigation by outside specialists, the firm discovered that its systems had been compromised and that data on an unknown number of Uber drivers had been stolen. According to what was indicated in the letter, Uber provided the law firm with the material in conjunction with its legal representation. 

Related Posts