KrakenLabs writes: This is the second part of Outpost24’s KrakenLabs investigation into EncryptHub, an up-and-coming cybercriminal who has been gaining popularity in recent months and is heavily expanding and evolving operations at the time of writing. We’ve already published one article explaining EncryptHub’s campaigns and TPPs, infrastructure, infection methods, and targets. This article will follow a different approach. We’ll…
Chinese hacker “Crazyhunter” behind ransomware attack on MacKay Hospital, others: CIB
Huang Li-yun and Matthew Mazzetta report that the hacker known as “Crazyhunter” on Breach Forums has been identified and prosecutors are seeking an arrest warrant for him: The Criminal Investigation Bureau (CIB) on Wednesday said it had identified the suspect behind the hacking and attempted extortion of MacKay Memorial Hospital as a 20-year-old Chinese man,…
Lawsuit: Pharmacist used spyware on UMMS computers to watch women, gain personal information
For your reminder of the insider threat for this week, Tolly Taylor reports: A Maryland pharmacist is accused of installing spyware on 400 computers over eight years to watch women at the hospital or in their homes, a lawsuit alleges. Six women filed a civil lawsuit on Thursday against the University of Maryland Medical System,…
Could Trump Budget Cuts Lead to More Cyberattacks Against Schools?
Arianna Prothero and Lauraine Langreo report: Schools stand to lose vital cybersecurity support from the federal government as the Trump administration takes dramatic steps to shrink its size, and the Education Department suspends a major cybersecurity support initiative. […] Education Week has confirmed that the U.S. Department of Education, at the behest of Homeland Security,…
16 months after they experienced a ransomware attack, Dameron Hospital notifies those affected
In 2017, Dameron Hospital in Texas reported a breach to the California Attorney General’s Office. No copy of its breach notification was uploaded to California’s breach site, and Dameron did not respond to this site’s email asking for details of the breach. The incident never appeared on HHS’s public breach tool, so we never found…
Hackers strike Australia’s largest pension funds in coordinated attacks
Christine Chen reports: Hackers targeting Australia’s major pension funds in a series of coordinated attacks have stolen savings from some members at the biggest fund, according to a source with knowledge of the matter, and compromised more than 20,000 accounts. National Cyber Security Coordinator Michelle McGuinness said in a statement she was aware of “cyber…