November 6, 2023 TLP:CLEAR Report: 202311061700 Executive Summary A relatively new ransomware group and strain known as BlackSuit, with significant similarities to the Royal ransomware family, will likely be a credible threat to the Healthcare and Public Health (HPH) sector. Discovered in early May 2023, BlackSuit’s striking parallels with Royal, the direct successor of the…
Search Results for: blacksuit
FBI Issues Warning As ‘Men In Black’ Hackers Demand $60 Million Ransom
Davey Winder reports: An updated advisory from the FBI and the Cybersecurity and Infrastructure Security Agency has warned of the danger from a ransomware group that has demanded as much as $60 million from its victims, and a staggering total of $500 million so far. The criminal hackers concerned have rebranded from calling themselves Royal…
CDK Global hacked again while recovering from first cyberattack
Lawrence Abrams reports: Car dealership SaaS platform CDK Global suffered an additional breach Wednesday night as it was starting to restore systems shut down in an previous cyberattack. CDK Global is a software-as-a-service platform that provides a full suite of applications to handle a car dealership’s operation, including sales, back office, financing, inventory, and service…
Special Health Resources’ “technical difficulties” are due to a ransomware attack
Although some threat groups or affiliates have sworn off attacking the medical sector with ransomware, not all have. On Sunday evening, June 2, Special Health Resources (“SHR”) posted a notice on their Facebook account: We are currently experiencing technical difficulties and on Monday, our health centers will only see patients who are actively sick. All…
Group Health Cooperative of South Central Wisconsin notifies 533,809 members of ransomware attack
Group Health Cooperative of South Central Wisconsin (GHC-SCW) is a non-profit, member-owned health plan providing services to more than 80,000 members in Wisconsin. This week, they provided reports to HHS and the Maine Attorney General’s Office about a breach they previously disclosed in February. On January 25, GHC-SCW posted an announcement on its website that…
Did Akumin experience two cyber attacks in October and November? It has only acknowledged one. (1)
On October 25, DataBreaches reported that Akumin’s ability to provide diagnostic services at some locations remained disrupted two weeks after they detected suspicious activity on their network. What they subsequently identified as a ransomware attack occurred during a time when Akumin was also dealing with bankruptcy. While there was some resolution of financial issues, things…