HACKRead
Feds Unmask LockBit Ransomware Leader as Dmitry Yuryevich Khoroshev
In a major blow to ransomware, international law enforcement has unmasked Dmitry Yuryevich Khoroshev, the leader of LockBit ransomware.
CyberNews
UnitedHealth hackers exploited Citrix bug, CEO says
The massive hack of UnitedHealth Group’s (UHG) tech subsidiary Change Healthcare was the result of an exploit of the Citrix bug, according to UHG CEO Andrew Witty.
The Record
Nations Direct Mortgage alerts 83,000 to personal data leaks from December cyberattack
The Nevada-based lender, which operates in 35 states, said a late 2023 breach involved Social Security numbers and other data.
SecurityWeek
US Offering $10M for LockBit Leaders as Law Enforcement Taunts Cybercriminals
The US is offering big rewards for information on LockBit cybercriminals as law enforcement claims to have identified some individuals.
HACKRead
Infosys Data Breach Impacts 57,000 Bank of America Customers
It can be confirmed that the primary victims of this data breach are Bank of America customers who participate in deferred compensation plans.
The Cyber Express
US Department of Defense Contractor Targeted by Donut Ransomware
The Donut ransomware group has expanded its victim list to include a prominent US Department of Defense contractor. The group,
The Record
Financial tech firm EquiLend says recovery after cyberattack ‘may take several days’
The Wall Street firm is the latest pillar of the financial services industry to come under cyberattack after it discovered a technical issue on January 22.
The Record
LoanDepot mortgage lender hit with cyberattack
In a notice on its website, LoanDepot said that it has been forced to “take certain systems offline” while it deals with the cyber incident.
The Cyber Express
Alleged Phoenix Group DDoS Attack Disrupts US Congress Website
The hacking group Phoenix has claimed responsibility for a Distributed Denial of Service (DDoS) attack on the website of the
The Record
First American becomes latest real estate industry giant hit with cyberattack
The California-based company, which provides title insurance and settlement services, was forced to post information on a temporary website.
The Cyber Wire
Comcast's Xfinity service responds to a major data breach.
Comcast warns Xfinity customers affected by a CitrixBleed exploit.
CyberNews
Breach of Comcast’s Xfinity exposes nearly 36 million people
Comcast's Xfinity breach exposed tens of millions of usernames and hashed passwords.
The Record
October cyberattack leaked data of 14.7 million people, mortgage giant Mr. Cooper says
The mortgage loan servicer file data breach notifications with regulators in Maine and Californnia.
CyberSecurity Dive
CitrixBleed isn’t going away: Security experts struggle to control critical vulnerability
While officials echo urgent mitigation steps to contain the zero-day vulnerability, high-profile organizations continue to bear the impact.
Security Affairs
Security Affairs newsletter Round 449 by Pierluigi Paganini
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you.
Infosecurity News
LockBit Remains Top Global Ransomware Threat
The strain was responsible for over a quarter of global ransomware attacks between January 2022 and September 2023
Security Affairs
LockBit on a Roll - ICBC Ransomware Attack Strikes at the Heart of the Global Financial Order
LockBit ransomware attack on the Industrial & Commercial Bank of China demonstrates the weakness of global financial system to cyberattacks
Bleeping Computer
US Health Dept urges hospitals to patch critical Citrix Bleed bug
The U.S. Department of Health and Human Services (HHS) warned hospitals this week to patch the critical 'Citrix Bleed' Netscaler vulnerability actively exploited in attacks.
CyberNews
North American auto supplier Yanfeng claimed by Qilin ransom group
The ransomware attack on Yanfeng – a North American auto parts supplier for GM and Stellantis' Jeep, Dodge, and Ram in North America is claimed by the Qilin ransom gang.
Infosecurity News
LockBit Affiliates Exploiting Citrix Bleed, Government Agencies Warn
Multiple threat actor groups are found to be exploiting a vulnerability in Citrix NetScaler gateway appliances, government agencies have warned
CSO
Flaw in Citrix software led to the recent cyberattack on Boeing: Report
Malicious elements, including LockBit 3.0, managed to exploit vulnerabilities in Citrix software even after they were fixed.
The Record
‘Citrix Bleed’ vulnerability targeted by nation-state and criminal hackers: CISA
The bug has caused alarm for weeks as cybersecurity experts warned that many government agencies and major companies were leaving their appliances exposed to the internet — opening themselves up to attacks.
Bleeping Computer
The Week in Ransomware - November 17th 2023 - Citrix in the Crosshairs
Ransomware gangs target exposed Citrix Netscaler devices using a publicly available exploit to breach large organizations, steal data, and encrypt files.
Bleeping Computer
Toyota confirms breach after Medusa ransomware threatens to leak data
Toyota Financial Services (TFS) has confirmed that it detected unauthorized access on some of its systems in Europe and Africa after Medusa ransomware claimed an attack on the company.
CyberNews
LockBit ransom gang behind mass exploitation of Citrix bug, researchers say
Security researchers are blaming a now-patched Citrix zero-day vulnerability for a recent spate of ransomware attacks said to be carried out by the LockBit gang.
Bleeping Computer
LockBit ransomware exploits Citrix Bleed in attacks, 10K servers exposed
The Lockbit ransomware attacks use publicly available exploits for the Citrix Bleed vulnerability (CVE-2023-4966) to breach the systems of large organizations, steal data, and encrypt files.
Latest Hacking News
ICBC Ransomware Attack – China’s Largest Bank Forced To Use USBs
As ransomware attacks continue wreaking havoc, the latest victim turned out to be the largest Chinese bank. The ICBC Bank admitted suffering a ransomware attack, following which, the bank switched to using USB sticks to
Ars Technica
Teens with “digital bazookas” are winning the ransomware war, researcher laments
LockBit victims, among the world's most powerful firms, can't be bothered to patch, it seems.
DataBreaches
Gang says ICBC paid ransom over hack that disrupted US Treasury market, ‘deal closed’
James Pearson reports: China’s biggest lender, the Industrial and Commercial Bank of China, paid a ransom after it was hacked last week, a Lockbit...
CyberNews
ICBC allegedly paid ransom after hack
ICBC allegedly plaid the ransom to attackers.
The Record
Canadian banking tech giant Moneris says it prevented ransomware attack
The joint venture of the Royal Bank of Canada and Bank of Montreal said its cybersecurity team “prevented access to critical data and no ransom request was made.”
DarkReading
'CitrixBleed' Linked to Ransomware Hit on China's State-Owned Bank
Meanwhile, CISA joins the call to patch CVE-2023-4966 immediately amid reports of mass-exploit activity; at least 5,000 orgs remain exposed.
CyberSecurity Dive
Chinese banking giant’s US arm hit by ransomware attack
The hack reportedly disrupted the trading of U.S. Treasuries. The Industrial and Commercial Bank of China Financial Services said it is investigating the attack and progressing recovery efforts.
Infosecurity News
ICBC and Allen & Overy Hit By Ransomware
Multinationals believed to have been targeted by LockBit
CyberNews
ICBC, China’s largest bank, hit with ransomware
Industrial and Commercial Bank of China was hit with ransomware attack, disrupting the US Treasury market.
Bleeping Computer
World’s largest commercial bank ICBC confirms ransomware attack
The Industrial & Commercial Bank of China (ICBC) is restoring systems and services following a ransomware attack that disrupted the U.S. Treasury market, causing equities clearing issues.
Bleeping Computer
Industrial and Commercial Bank of China hit by ransomware attack
The Industrial & Commercial Bank of China (ICBC) is restoring systems and services following a ransomware attack that disrupted the U.S. Treasury market, causing equities clearing issues.
The Record
Industrial and Commercial Bank of China dealing with LockBit ransomware attack
The ransomware attack on China's largest bank impacted trading on the U.S. Treasury market.
Infosecurity News
Ransomware and Nation-State Attacks Now the Biggest Threats, Say Cybersecurity Pros
Ransomware, nation-state attacks, and supply chains were cited as the biggest threats in the Infosecurity Group's annual report