It is the kind of story destined for big headlines. The Yanluowang group announced today that they had attacked CISCO. But instead of them controlling the story, CISCO seems to have immediately taken control. The threat actors, who appear not to be a fan of Grammarly, posted a directory of Drive C: on their leak…
Category: Business Sector
SCOOP: ista International takes systems offline in wake of ransomware attack; Daixin Team claims thousands of servers encrypted
ista International GmbH is a multinational company that manages data and processes that make buildings climate-friendly, safe and comfortable. As they describe themselves: We see the future of our success in the Internet of Things (IoT). Very soon billions of devices will talk directly to each other. This communication will largely take place in and…
Bits ‘n Pieces
Updating some HHS reports: First Choice Community Health Care reported its ransomware attack to HHS on August 1 as impacting 101,541 patients. BHG Holdings / Behavioral Health Group reported its breach to HHS on July 27 as impacting 197,507 patients. Elsewhere: California: A former owner of a T-Mobile retail store in Eagle Rock has been…
Morocco court in favor of extraditing a French national alleged to be ShinyHunters member to US
French news wires report that Morocco’s Court of Cassation has issued an opinion favorable to extraditing French national Sebastien Raoult to the U.S. to face criminal charges related to alleged involvement in ShinyHunters. But the court’s opinion is not an extradition order and they do not have the final say on extradition. Raoult has been…
Twilio hacked by phishing campaign targeting internet companies
Carly Page reports: Communications giant Twilio has confirmed hackers accessed customer data after successfully tricking employees into handing over their corporate login credentials. The San Francisco-based company, which allows users to build voice and SMS capabilities — such as two-factor authentication (2FA) — into applications, said in a blog post published Monday that it became aware that someone gained…
New GwisinLocker ransomware encrypts Windows and Linux ESXi servers
This site generally doesn’t cover or announce new types of ransomware, but this one targets the healthcare sector, so…. Bill Toulas reports: A new ransomware family called ‘GwisinLocker’ targets South Korean healthcare, industrial, and pharmaceutical companies with Windows and Linux encryptors, including support for encrypting VMware ESXi servers and virtual machines. The new malware is…