Security Affairs
E-prescription provider MediSecure impacted by a ransomware attack...
Electronic prescription provider MediSecure in Australia suffered a ransomware attack likely originate...
DarkReading
Santander Falls Victim to Data Breach Involving Third-Party Provider
The company reports that customers based in Chile, Spain, and Uruguay were the primary victims of the breach, alongside some former employees of the global bank.
DarkReading
GE Ultrasound Gear Riddled With Bugs, Open to Ransomware & Data Theft...
Thankfully, GE ultrasounds aren't Internet-facing. Exploiting most of the bugs to cause serious damage to patients would require physical device access.
Infosecurity News
Windows Quick Assist Exploited in Ransomware Attacks...
Microsoft warned Storm-1811 started vishing attacks in April to gain access to target devices
Infosecurity News
53,000 Employees' Social Security Numbers Exposed in Nissan Breach
...that over 53,000 of its North America employees had their social security numbers accessed by a ransomware...
Cyber Security News
Top 10 Best Managed Service Providers (MSP) for CISO, CTO & IT Managers - 2024
Best MSP for CISO, CTO & IT Managers - 1. Perimeter 812. Secureworks 3. IBM 4. Trustwave 5. Wipro 6. Verizon 7. Sophos 8. Symantec.
DarkReading
Windows Quick Assist Anchors Black Basta Ransomware Gambit...
When abused by threat actors with sophisticated social-engineering chops, remote-access tools demand that enterprises remain sharp in both defense strategy and employee-awareness training.
SecurityWeek
Nissan Data Breach Impacts 53,000 Employees
Nissan North America determined recently that a ransomware attack launched last year resulted in employee...
CSO
BreachForums seized by law enforcement, admin Baphomet arrested
Official telegram channels operated by BreachForums members confirm law enforcement seizures and arrest.
Cyber Security News
Hackers Exploiting Microsoft's Quick Assist Tool To Deliver Ransomware...
Remote assist tools are often targeted by hackers as they create a direct channel that can be used to get into desired systems while using
SecurityWeek
Personal Information Stolen in City of Wichita Ransomware Attack...
The City of Wichita says files containing personal information were exfiltrated in a recent ransomware...
Infosecurity News
UK Lags Europe on Exploited Vulnerability Remediation
UK organizations are less likely than their European peers to have known exploited bugs but take longer to fix them
The Hacker News
Researchers Uncover 11 Security Flaws in GE HealthCare Ultrasound Machines
Nearly a dozen security flaws have been discovered in the GE HealthCare Vivid Ultrasound product family.
DarkReading
Nigeria Halts Cybersecurity Tax After Public Outrage
In an economy choking on swelling inflation, the Nigerian government paused plans for a levy on domestic transactions, aimed at enhancing cybersecurity.
The Hacker News
Cybercriminals Exploiting Microsoft’s Quick Assist Feature in Ransomware Attacks...
Beware of Storm-1811! This financially motivated group is abusing Microsoft's Quick Assist tool in social engineering attacks.
The Record
UK insurance industry begins to acknowledge role in tackling ransomware...
...s insurance industry on new guidelines for organizations facing ransomware attacks....
The Record
New UK system will see ISPs benefit from same protections as government networks
The Share and Defend system will provide a list of malicious domains to a range of U.K. communications providers so the domains can be added to blocklists.
SecurityWeek
Threat Actors Abuse GitHub to Distribute Multiple Information Stealers
Russian-speaking threat actors are caught abusing a GitHub profile to distribute information stealers posing as legitimate software.
CSO
Singing River ransomware attack now thought to have affected over 895,000...
The health care provider has dramatically increased its estimate of the number of patients affected by the August 2023 attack.
The Hacker News
(Cyber) Risk = Probability of Occurrence x Damage
CVSS v4.0 evaluates vulnerabilities using a revised scoring system, emphasizing environmental and threat metrics.
SecurityWeek
900k Impacted by Data Breach at Mississippi Healthcare Provider
System says the personal information of roughly 900,000 individuals was stolen in an August 2023 ransomware...
Cyber Security News
10 Best Network Security Providers for Healthcare Industry in 2024
Best Network Security Providers for the Healthcare Industry - 1. Perimeter 81, 2. Palo Alto Networks, 3. Fortinet, 4. Cisco, 5. Trend Micro
Cyber Security News
How To Reduce The Alert Triage Time In Security Operations: SOC Analyst Guide
Alert Triage is a process of recognizing the important alerts from a huge pool of security alerts and allocating the resources accurately.
Security Affairs
Ransomware attack on Singing River Health System impacted 895,000 people...
The Singing River Health System revealed that the ransomware attack that hit the organization in August...
CSO
FBI warns Black Basta ransomware impacted over 500 organizations worldwide...
CISA advisory includes indicators of compromise and TTPs that can be used for threat hunting.
The Record
Law enforcement data stolen in Wichita ransomware attack...
In a data breach notice about the incident, which is still affecting numerous city services, the municipality said hackers copied files from its network.
DarkReading
Microsoft Windows DWM Zero-Day Poised for Mass Exploit
CVE-2024-30051 is the most concerning out of this month's Patch Tuesday offerings, and is already under active exploit by several QakBot actors.
Infosecurity News
Data Breaches in US Schools Exposed 37.6M Records
Comparitech said 2023 was a record year for breaches with 954 reported, up from 139 in 2022 and 783 in 2021
Infosecurity News
UK Insurance and NCSC Join Forces to Fight Ransomware Payments...
UK insurers and the National Cybersecurity Centre release new guidance to discourage ransomware payments...
The Hacker News
Ongoing Campaign Bombarded Enterprises with Spam Emails and Phone Calls
A new social engineering campaign is targeting enterprises with spam emails to gain initial access. The threat actor overwhelms users' email and calls
SecurityWeek
Student, Personnel Information Stolen in City of Helsinki Cyberattack
The City of Helsinki says usernames, email addresses, and personal information was stolen in a recent cyberattack.
CyberSecurity Dive
Cyber insurance costs are stabilizing as global market grows
Increased capacity is helping to meet rising demand for cyber coverage and more insurers are using tools to assess potential risk, a report from S&P Global Ratings shows.
.webp)
Cyber Security News
Beware! Threat Actor Selling Outlook RCE 0-Day on Hacking Forums
A threat actor has reportedly put up for sale a RCE 0-day exploit targeting various versions of Microsoft Outlook..
CyberSecurity Dive
How a CISA proposal could impact K-12 cyber incident reporting
Overall, the nonprofit K12 Security Information Exchange backed the requirement for schools, but it asked for clarification on how the sector should report cyber incidents students initiate.
Security Affairs
Phorpiex botnet sent millions of phishing emails to deliver LockBit Black ransomware...
...that since April, the Phorpiex botnet sent millions of phishing emails to spread LockBit Black ransomware...
DarkReading
500 Victims In, Black Basta Reinvents With Novel Vishing Strategy
Ransomware groups have always created problems for their victims that only they could solve....
SecurityWeek
Apple Patch Day: Code Execution Flaws in iPhones, iPads, macOS
Apple documents another zero-day flaw being exploited on older iPhones and documents security problems in macOS, iOS and iPadOS.
Infosecurity News
Mallox Ransomware Deployed Via MS-SQL Honeypot Attack...
Analyzing Mallox samples, Sekoia identified two distinct affiliates using different approaches
Cyber Security News
Hackers Exploiting MS-SQL Severs To Deploy Mallox Ransomware...
Information such as financial records, customer information, and intellectual property that may be sold on the black web markets is what
Infosecurity News
Ascension Ransomware Attack Diverts Ambulances, Delays Appointments...
A ransomware attack on US private healthcare provider Ascension has disrupted patient care, with several...
CyberSecurity Dive
Black Basta ransomware is toying with critical infrastructure providers, authorities say...
The threat group has impacted more than 500 targets worldwide and the vast majority of critical infrastructure sectors. Numerous attacks have exploited vulnerabilities in ConnectWise ScreenConnect.
SecurityWeek
Black Basta Ransomware Hit Over 500 Organizations...
The US government warns of Black Basta ransomware attacks targeting critical infrastructure organizations...
Infosecurity News
Black Basta Ransomware Victim Count Tops 500...
Affiliates of prolific Black Basta ransomware group have breached over 500 global organizations...
The Hacker News
Black Basta Ransomware Strikes 500+ Entities Across North America, Europe, and Australia...
Black Basta ransomware-as-a-service (RaaS) operation has targeted over 500 private industry and critical...
SecurityWeek
FBCS Collection Agency Data Breach Impacts 2.7 Million
Financial Business and Consumer Solutions (FBCS) says the personal information of 2.7 million was impacted in the recent data breach.
Cyber Security News
CISA Warns Of Black Basta Ransomware Attacking 500+ Industries...
Black Basta ransomware is used by threat actors because of its powerful abilities and inconspicuous moves...
.webp)
Cyber Security News
Ascension Healthcare Systems Hacked, Hospitals Diverting Emergency Service
It has been hit hard by a ransomware attack....
Security Affairs
Firstmac Limited disclosed a data breach after cyber attack
Firstmac Limited disclosed a data breach after the new Embargo extortion group leaked over 500GB of data allegedly stolen from the company.
Cyber Security News
Boeing Confirms LockBit Hackers Demanded $200 Million Ransom After 2023 Data Breach
Aerospace giant Boeing has confirmed that the LockBit ransomware gang demanded a staggering $200 million...
Security Affairs
Security Affairs newsletter Round 471 by Pierluigi Paganini – INTERNATIONAL EDITION
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs are free for you.
.png)
Cyber Security News
Cyber Security News Weekly Round-Up (Vulnerabilities, Cyber Attacks, Threats & New Stories)
Staying informed is the key in this dynamic battle of cybersecurity, and due to this, the weekly news recap provides you with the newest trends, weaknesses, infringements found, and some possible defense mechanisms.
Security Affairs
As of May 2024, Black Basta ransomware affiliates hacked over 500 organizations worldwide...
Black Basta ransomware affiliates have breached over 500 organizations between April 2022 and May 2024...
Security Affairs
Ohio Lottery data breach impacted over 538,000 individuals
The cyber attack on the Ohio Lottery on Christmas Eve exposed the personal data of over 538,000 individuals.
Security Affairs
A cyberattack hit the US Healthcare giant Ascension
A cyberattack hit the US Healthcare giant Ascension and is causing disruption of the systems at hospitals in the country
The Hacker News
FIN7 Hacker Group Leverages Malicious Google Ads to Deliver NetSupport RAT
The notorious FIN7 hacking group is at it again! This time, they're using malicious Google ads to trick users into downloading malware disguised as le
DarkReading
Ascension Healthcare Suffers Major Cyberattack
The attack cut off access to electronic healthcare records (EHRs) and ordering systems, plunging the organization and its health services into chaos.
SecurityWeek
Healthcare Giant Ascension Hacked, Hospitals Diverting Emergency Service
Ascension is scrambling to contain a significant hack causing disruption and “downtime procedures” at hospitals around the country.
DarkReading
Cybersecurity Races to Unmask New Wave of AI Deepfakes
Kevin Mandia, CEO of Mandiant at Google Cloud, calls for watermarks as the industry braces for a barrage of mind-bending AI-generated fake audio and video.
SecurityWeek
500,000 Impacted by Ohio Lottery Ransomware Attack...
The Ohio Lottery cyberattack conducted by the DragonForce ransomware group has impacted more than 500,000...
SecurityWeek
RSA Conference 2024 – Announcements Summary (Day 4)
Hundreds of companies are showcasing their products and services this week at the 2024 edition of the RSA Conference in San Francisco.
CyberSecurity Dive
Some Ascension hospitals diverting emergency care after cybersecurity incident
The health system’s electronic health records, MyChart patient portal and several systems for ordering tests and medications are unavailable, Ascension said.
The Record
After Ascension ransomware attack, feds issue alert on Black Basta group...
The FBI, CISA and Department of Health and Human Services (HHS) alerted healthcare organizations to the group's activities. A separate report said Black Basta was behind the attack on Ascension healthcare system.
The Record
UK hit by more ransomware and cyberattacks last year than ever before...
A recent update of security incident trends data from the Information Commissioner’s Office (ICO) shows that 2023 was yet another record year for data breaches.
The Record
As White House preps new cyber rules for healthcare, Neuberger says backlash is unwarranted
The current cybersecurity situation in the healthcare industry is at least a decade in the making, White House official Anne Neuberger said at the RSA Conference.
DarkReading
LockBit Claims Wichita as Its Victim 2 Days After Ransomware Attack...
...investigating the attack, and neither the group nor city officials have offered details about the ransomware...
SecurityWeek
Dell Says Customer Names, Addresses Stolen in Database Breach
Tech giant notifies millions of customers that full names and physical mailing addresses were stolen during a security incident.
Security Affairs
Mirai botnet also spreads through the exploitation of Ivanti Connect Secure bugs
Threat actors exploit recently disclosed Ivanti Connect Secure (ICS) vulnerabilities to deploy the Mirai botnet.
SecurityWeek
LockBit Takes Credit for City of Wichita Ransomware Attack...
The LockBit cybercrime group has taken credit for the recent ransomware attack that disrupted City of...
The Hacker News
Mirai Botnet Exploits Ivanti Connect Secure Flaws for Malicious Payload Delivery
Ivanti Connect Secure (ICS) devices are under attack! Two critical vulnerabilities are being exploited to deploy the notorious Mirai botnet.
%20(1).webp)
Cyber Security News
Brandywine Realty Trust Ransomware Attack: Services Disrupted...
...significant U.S. real estate investment trust, has confirmed a disruption to its operations due to a ransomware...
CyberSecurity Dive
Ascension hit by cybersecurity incident disrupting clinical operations
The major nonprofit health system detected “unusual activity” on some network systems Wednesday.
CyberSecurity Dive
CISA explains why it doesn’t call out tech vendors by name
Federal officials rarely criticize tech companies when their mistakes result in attacks. The stinging conclusions CSRB levied at Microsoft are an exception, not the norm.
The Record
In interview, LockBItSupp says authorities outed the wrong guy
LockBitSupp, head of the LockBit cybercrime operation, tells the Click Here podcast team that he is not Russian national Dmitry Khoroshev, as claimed by the U.S., U.K. and Australia.
The Record
Federal agencies assisting Catholic health network amid cyberattack
Deputy National Security Advisor Anne Neuberger said the incident is an example of the need for more to be done to protect critical infrastructure.
The Record
With nation-state threats in mind, nearly 70 software firms agree to Secure by Design pledge
CISA Director Jen Easterly said the voluntary pledge by software companies is important because of widespread nation-state hacking campaigns, including the Volt Typhoon operation attributed to China.
DarkReading
UK Military Data Breach a Reminder of Third-Party Risk
An attacker accessed personal information of over 225,000 active, reserve, and former UK military members from third-party payroll processing system.
Security Affairs
LockBit gang claimed responsibility for the attack on City of Wichita
The LockBit ransomware group has added the City of Wichita to its Tor leak site and threatened to publish...
SecurityWeek
Shields Up: How to Minimize Ransomware Exposure...
Organizations must look beyond preventive measures when it comes to dealing with today’s ransomware threats... and invest in ransomware response....
Infosecurity News
10,000 Customers’ Data Exposed in UK Government Breaches
The findings come from Apricorn, based on annual Freedom of Information (FOI) responses from 2023
.webp)
Cyber Security News
MorLock Ransomware Attacking Organizations to Steal Business Data...
A new group known as MorLock ransomware has intensified its attacks on Russian businesses, causing disruptions...
CyberSecurity Dive
Generative AI is a looming cybersecurity threat
Researchers have not identified any AI-engineered cyberattack campaigns, yet, but they say it’s only a matter of time before an AI system is dominant enough in the market to draw attention.
SecurityWeek
Brandywine Realty Trust Hit by Ransomware...
Philadelphia-based real estate company Brandywine Realty Trust shuts down systems following a ransomware...
CyberSecurity Dive
The US really wants to improve critical infrastructure cyber resilience
A report from the Office of the National Cyber Director highlights persistent threats targeting healthcare and water, echoing warnings from cyber officials earlier this year.
Cyber Security News
University System of Georgia Says 800,000 Students Impacted in MOVEit Hack
The University System of Georgia (USG) announced that the confidential information of approximately 800,000 students, faculty, and staff was exposed in the recent MOVEit data breach.
.webp)
Cyber Security News
City of Wichita Ransomware Attack: Services Impacted...
The city of Wichita's Ransomware attack has impacted several city services, causing inconvenience to...
SecurityWeek
University System of Georgia Says 800,000 Impacted by MOVEit Hack
University System of Georgia says Social Security numbers and bank account numbers were compromised in the May 2023 MOVEit hack.
CSO
DocGo says hackers stole patient data in a recent cyberattack
The attack compromised some healthcare data with no material or financial losses, the company said.
CSO
Administrator of ransomware operation LockBit named, charged, has assets frozen...
A Russian national alleged to have been the administrator of the notorious and prolific LockBit ransomware...
CSO
US doing all it can to manage global cybersecurity threats, secretary of state tells RSAC
The US government is moving to address the challenges of quantum computing, cloud strategies, and generative AI, Anthony Blinken said in a speech that was light on specifics.
The Record
LockBit claims attack on Wichita as city struggles with payment issues, airport disruption
The ransomware operation gave the Kansas city until May 15 to pay up....
The Record
Stolen children’s health records posted online in extortion bid
Cybercriminals have published another batch of data stolen from NHS Dumfries and Galloway in Scotland, this time including information about children.
The Record
Catholic health system Ascension warns of disruptions following cyberattack
The nonprofit health provider published a notice saying it discovered unusual activity on network systems and immediately began an investigation.
The Record
CISA wants ‘high-quality feedback’ for another month on CIRCIA rule
Industry asked for an extension of the comment period for a key rule on cybersecurity incident reporting, and "in the interest of supporting the community out there, we decided to give them an extra 30 days,” said Brandon Wales, CISA’s executive director, at the 2024 RSA Conference.
The Record
Patient appointments imperiled by cyberattack on French radiologist
Coradix-Magnescan is the latest French healthcare entity to face a cyberattack. The company said it remains "very complicated" for patients to book appointments.
The Record
Former NSA head Paul Nakasone to helm national security institute at Vanderbilt
The former U.S. Cyber Command and National Security Agency chief will be the founding director of a national security-focused hub at the Nashville-based campus.
The Record
Any number given of Volt Typhoon victims ‘likely an underestimate,’ CISA says
The campaign by Chinese hackers to target U.S. critical infrastructure is intended to “cause disruption and sow societal panic,” a senior cybersecurity official said Tuesday.
DarkReading
Australia Sanctions LockBit Honcho to Cut Off Cash
Australian businesses and individuals now risk fines and other consequences if they pay ransoms to LockBitSupp, aka Dmitry Yuryevich Khoroshev.
DarkReading
Does CISA's KEV Catalog Speed Up Remediation?
Vulnerabilities added to the CISA known exploited vulnerability (KEV) list do indeed get patched faster, but not fast enough.
Security Affairs
Law enforcement agencies identified LockBit ransomware admin and sanctioned him...
The FBI, UK National Crime Agency, and Europol revealed the identity of the admin of the LockBit operation and sanctioned him.
SecurityWeek
LockBit Ransomware Mastermind Unmasked, Charged...
...sanctions announced against Dimitry Yuryevich Khoroshev, the alleged developer and operator of LockBit ransomware...