Security Affairs
E-prescription provider MediSecure impacted by a ransomware attack...
Electronic prescription provider MediSecure in Australia suffered a ransomware attack likely originate...
Security Affairs
Electronic prescription provider MediSecure in Australia suffered a ransomware attack likely originate...
DarkReading
The company reports that customers based in Chile, Spain, and Uruguay were the primary victims of the breach, alongside some former employees of the global bank.
DarkReading
Thankfully, GE ultrasounds aren't Internet-facing. Exploiting most of the bugs to cause serious damage to patients would require physical device access.
Infosecurity News
Microsoft warned Storm-1811 started vishing attacks in April to gain access to target devices
Infosecurity News
...that over 53,000 of its North America employees had their social security numbers accessed by a ransomware...
Cyber Security News
Best MSP for CISO, CTO & IT Managers - 1. Perimeter 812. Secureworks 3. IBM 4. Trustwave 5. Wipro 6. Verizon 7. Sophos 8. Symantec.
DarkReading
When abused by threat actors with sophisticated social-engineering chops, remote-access tools demand that enterprises remain sharp in both defense strategy and employee-awareness training.
SecurityWeek
Nissan North America determined recently that a ransomware attack launched last year resulted in employee...
CSO
Official telegram channels operated by BreachForums members confirm law enforcement seizures and arrest.
Cyber Security News
Remote assist tools are often targeted by hackers as they create a direct channel that can be used to get into desired systems while using
SecurityWeek
The City of Wichita says files containing personal information were exfiltrated in a recent ransomware...
Infosecurity News
UK organizations are less likely than their European peers to have known exploited bugs but take longer to fix them
The Hacker News
Nearly a dozen security flaws have been discovered in the GE HealthCare Vivid Ultrasound product family.
DarkReading
In an economy choking on swelling inflation, the Nigerian government paused plans for a levy on domestic transactions, aimed at enhancing cybersecurity.
The Hacker News
Beware of Storm-1811! This financially motivated group is abusing Microsoft's Quick Assist tool in social engineering attacks.
The Record
...s insurance industry on new guidelines for organizations facing ransomware attacks....
The Record
The Share and Defend system will provide a list of malicious domains to a range of U.K. communications providers so the domains can be added to blocklists.
SecurityWeek
Russian-speaking threat actors are caught abusing a GitHub profile to distribute information stealers posing as legitimate software.
CSO
The health care provider has dramatically increased its estimate of the number of patients affected by the August 2023 attack.
The Hacker News
CVSS v4.0 evaluates vulnerabilities using a revised scoring system, emphasizing environmental and threat metrics.
SecurityWeek
System says the personal information of roughly 900,000 individuals was stolen in an August 2023 ransomware...
Cyber Security News
Best Network Security Providers for the Healthcare Industry - 1. Perimeter 81, 2. Palo Alto Networks, 3. Fortinet, 4. Cisco, 5. Trend Micro
Cyber Security News
Alert Triage is a process of recognizing the important alerts from a huge pool of security alerts and allocating the resources accurately.
Security Affairs
The Singing River Health System revealed that the ransomware attack that hit the organization in August...
CSO
CISA advisory includes indicators of compromise and TTPs that can be used for threat hunting.
The Record
In a data breach notice about the incident, which is still affecting numerous city services, the municipality said hackers copied files from its network.
DarkReading
CVE-2024-30051 is the most concerning out of this month's Patch Tuesday offerings, and is already under active exploit by several QakBot actors.
Infosecurity News
Comparitech said 2023 was a record year for breaches with 954 reported, up from 139 in 2022 and 783 in 2021
Infosecurity News
UK insurers and the National Cybersecurity Centre release new guidance to discourage ransomware payments...
The Hacker News
A new social engineering campaign is targeting enterprises with spam emails to gain initial access. The threat actor overwhelms users' email and calls
SecurityWeek
The City of Helsinki says usernames, email addresses, and personal information was stolen in a recent cyberattack.
CyberSecurity Dive
Increased capacity is helping to meet rising demand for cyber coverage and more insurers are using tools to assess potential risk, a report from S&P Global Ratings shows.
Cyber Security News
A threat actor has reportedly put up for sale a RCE 0-day exploit targeting various versions of Microsoft Outlook..
CyberSecurity Dive
Overall, the nonprofit K12 Security Information Exchange backed the requirement for schools, but it asked for clarification on how the sector should report cyber incidents students initiate.
Security Affairs
...that since April, the Phorpiex botnet sent millions of phishing emails to spread LockBit Black ransomware...
DarkReading
Ransomware groups have always created problems for their victims that only they could solve....
SecurityWeek
Apple documents another zero-day flaw being exploited on older iPhones and documents security problems in macOS, iOS and iPadOS.
Infosecurity News
Analyzing Mallox samples, Sekoia identified two distinct affiliates using different approaches
Cyber Security News
Information such as financial records, customer information, and intellectual property that may be sold on the black web markets is what
Infosecurity News
A ransomware attack on US private healthcare provider Ascension has disrupted patient care, with several...
CyberSecurity Dive
The threat group has impacted more than 500 targets worldwide and the vast majority of critical infrastructure sectors. Numerous attacks have exploited vulnerabilities in ConnectWise ScreenConnect.
SecurityWeek
The US government warns of Black Basta ransomware attacks targeting critical infrastructure organizations...
Infosecurity News
Affiliates of prolific Black Basta ransomware group have breached over 500 global organizations...
The Hacker News
Black Basta ransomware-as-a-service (RaaS) operation has targeted over 500 private industry and critical...
SecurityWeek
Financial Business and Consumer Solutions (FBCS) says the personal information of 2.7 million was impacted in the recent data breach.
Cyber Security News
Black Basta ransomware is used by threat actors because of its powerful abilities and inconspicuous moves...
Cyber Security News
It has been hit hard by a ransomware attack....
Security Affairs
Firstmac Limited disclosed a data breach after the new Embargo extortion group leaked over 500GB of data allegedly stolen from the company.
Cyber Security News
Aerospace giant Boeing has confirmed that the LockBit ransomware gang demanded a staggering $200 million...
Security Affairs
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs are free for you.
Cyber Security News
Staying informed is the key in this dynamic battle of cybersecurity, and due to this, the weekly news recap provides you with the newest trends, weaknesses, infringements found, and some possible defense mechanisms.
Security Affairs
Black Basta ransomware affiliates have breached over 500 organizations between April 2022 and May 2024...
Security Affairs
The cyber attack on the Ohio Lottery on Christmas Eve exposed the personal data of over 538,000 individuals.
Security Affairs
A cyberattack hit the US Healthcare giant Ascension and is causing disruption of the systems at hospitals in the country
The Hacker News
The notorious FIN7 hacking group is at it again! This time, they're using malicious Google ads to trick users into downloading malware disguised as le
DarkReading
The attack cut off access to electronic healthcare records (EHRs) and ordering systems, plunging the organization and its health services into chaos.
SecurityWeek
Ascension is scrambling to contain a significant hack causing disruption and “downtime procedures” at hospitals around the country.
DarkReading
Kevin Mandia, CEO of Mandiant at Google Cloud, calls for watermarks as the industry braces for a barrage of mind-bending AI-generated fake audio and video.
SecurityWeek
The Ohio Lottery cyberattack conducted by the DragonForce ransomware group has impacted more than 500,000...
SecurityWeek
Hundreds of companies are showcasing their products and services this week at the 2024 edition of the RSA Conference in San Francisco.
CyberSecurity Dive
The health system’s electronic health records, MyChart patient portal and several systems for ordering tests and medications are unavailable, Ascension said.
The Record
The FBI, CISA and Department of Health and Human Services (HHS) alerted healthcare organizations to the group's activities. A separate report said Black Basta was behind the attack on Ascension healthcare system.
The Record
A recent update of security incident trends data from the Information Commissioner’s Office (ICO) shows that 2023 was yet another record year for data breaches.
The Record
The current cybersecurity situation in the healthcare industry is at least a decade in the making, White House official Anne Neuberger said at the RSA Conference.
DarkReading
...investigating the attack, and neither the group nor city officials have offered details about the ransomware...
SecurityWeek
Tech giant notifies millions of customers that full names and physical mailing addresses were stolen during a security incident.
Security Affairs
Threat actors exploit recently disclosed Ivanti Connect Secure (ICS) vulnerabilities to deploy the Mirai botnet.
SecurityWeek
The LockBit cybercrime group has taken credit for the recent ransomware attack that disrupted City of...
The Hacker News
Ivanti Connect Secure (ICS) devices are under attack! Two critical vulnerabilities are being exploited to deploy the notorious Mirai botnet.
Cyber Security News
...significant U.S. real estate investment trust, has confirmed a disruption to its operations due to a ransomware...
CyberSecurity Dive
The major nonprofit health system detected “unusual activity” on some network systems Wednesday.
CyberSecurity Dive
Federal officials rarely criticize tech companies when their mistakes result in attacks. The stinging conclusions CSRB levied at Microsoft are an exception, not the norm.
The Record
LockBitSupp, head of the LockBit cybercrime operation, tells the Click Here podcast team that he is not Russian national Dmitry Khoroshev, as claimed by the U.S., U.K. and Australia.
The Record
Deputy National Security Advisor Anne Neuberger said the incident is an example of the need for more to be done to protect critical infrastructure.
The Record
CISA Director Jen Easterly said the voluntary pledge by software companies is important because of widespread nation-state hacking campaigns, including the Volt Typhoon operation attributed to China.
DarkReading
An attacker accessed personal information of over 225,000 active, reserve, and former UK military members from third-party payroll processing system.
Security Affairs
The LockBit ransomware group has added the City of Wichita to its Tor leak site and threatened to publish...
SecurityWeek
Organizations must look beyond preventive measures when it comes to dealing with today’s ransomware threats... and invest in ransomware response....
Infosecurity News
The findings come from Apricorn, based on annual Freedom of Information (FOI) responses from 2023
Cyber Security News
A new group known as MorLock ransomware has intensified its attacks on Russian businesses, causing disruptions...
CyberSecurity Dive
Researchers have not identified any AI-engineered cyberattack campaigns, yet, but they say it’s only a matter of time before an AI system is dominant enough in the market to draw attention.
SecurityWeek
Philadelphia-based real estate company Brandywine Realty Trust shuts down systems following a ransomware...
CyberSecurity Dive
A report from the Office of the National Cyber Director highlights persistent threats targeting healthcare and water, echoing warnings from cyber officials earlier this year.
Cyber Security News
The University System of Georgia (USG) announced that the confidential information of approximately 800,000 students, faculty, and staff was exposed in the recent MOVEit data breach.
Cyber Security News
The city of Wichita's Ransomware attack has impacted several city services, causing inconvenience to...
SecurityWeek
University System of Georgia says Social Security numbers and bank account numbers were compromised in the May 2023 MOVEit hack.
CSO
The attack compromised some healthcare data with no material or financial losses, the company said.
CSO
A Russian national alleged to have been the administrator of the notorious and prolific LockBit ransomware...
CSO
The US government is moving to address the challenges of quantum computing, cloud strategies, and generative AI, Anthony Blinken said in a speech that was light on specifics.
The Record
The ransomware operation gave the Kansas city until May 15 to pay up....
The Record
Cybercriminals have published another batch of data stolen from NHS Dumfries and Galloway in Scotland, this time including information about children.
The Record
The nonprofit health provider published a notice saying it discovered unusual activity on network systems and immediately began an investigation.
The Record
Industry asked for an extension of the comment period for a key rule on cybersecurity incident reporting, and "in the interest of supporting the community out there, we decided to give them an extra 30 days,” said Brandon Wales, CISA’s executive director, at the 2024 RSA Conference.
The Record
Coradix-Magnescan is the latest French healthcare entity to face a cyberattack. The company said it remains "very complicated" for patients to book appointments.
The Record
The former U.S. Cyber Command and National Security Agency chief will be the founding director of a national security-focused hub at the Nashville-based campus.
The Record
The campaign by Chinese hackers to target U.S. critical infrastructure is intended to “cause disruption and sow societal panic,” a senior cybersecurity official said Tuesday.
DarkReading
Australian businesses and individuals now risk fines and other consequences if they pay ransoms to LockBitSupp, aka Dmitry Yuryevich Khoroshev.
DarkReading
Vulnerabilities added to the CISA known exploited vulnerability (KEV) list do indeed get patched faster, but not fast enough.
Security Affairs
The FBI, UK National Crime Agency, and Europol revealed the identity of the admin of the LockBit operation and sanctioned him.
SecurityWeek
...sanctions announced against Dimitry Yuryevich Khoroshev, the alleged developer and operator of LockBit ransomware...