August 4, 2023 TLP:CLEAR Report: 202308041500 Executive Summary Rhysida is a new ransomware-as-a-service (RaaS) group that has emerged since May 2023. The group drops an eponymous ransomware via phishing attacks and Cobalt Strike to breach targets’ networks and deploy their payloads. The group threatens to publicly distribute the exfiltrated data if the ransom is not…
Author: Dissent
Jefferson County Health Center notifies patients about May cyberattack
On or about July 7, Karakurt threat actors added Jefferson County Health Center in Iowa to their leak site to pressure them to pay ransom demands. Or was it Jefferson County Hospital in Oklahoma that they had hit? Right below their heading claiming it was the Iowa facility, their text indicated it was the similarly…
Pt: SESARAM confirms cyberattack on region’s health service, suspends non-urgent activity Monday
Iolanda Chaves reports (machine translated): SESARAM has just issued a statement confirming the occurrence of a “deliberate and malicious cyberattack with the sole objective of causing damage and disrupting the normal functioning of the Regional Health Service of the Autonomous Region of Madeira”. “The internal functioning of SESARAM is thus affected, compromising some areas”, underlines…
Biden Administration Launches Effort To Defend Schools From Hackers
Eric Geller reports: The Biden administration will host a gathering on Monday to shine a spotlight on a community that urgently needs cybersecurity aid: America’s K-12 schools. School leaders, federal officials and technology executives will convene at the White House to discuss the importance of improving schools’ digital security to prevent hackers from shutting down…
New acoustic attack steals data from keystrokes with 95% accuracy
You’re on a call with someone and they can hear you keyboarding. Can they wind up figuring out what you typed or stealing any passwords you typed in while on the call? Bill Toulas reports: A team of researchers from British universities has trained a deep learning model that can steal data from keyboard keystrokes…
Parathon by JDA eHealth Systems hit by Akira? They haven’t responded to inquiries.
Visitors to Akira’s dark web leak site are greeted with a message: Well, you are here. It means that you’re suffering from cyber incident right now. Think of our actions as an unscheduled forced audit of your network for vulnerabilities. Keep in mind that there is a fair price to make it all go away….