DW reports: Germany accused Russia’s military intelligence service, the GRU, on Friday of being behind a 2023 cyberattack that targeted the Social Democrats (SPD). NATO member Germany has been among the Western nations providing military support to Ukraine as it fights a Russian invasion and there have also been recent accusations of increased espionage. In June 2023, the SPD announced that cybercriminals had…
Category: Breach Incidents
Change Healthcare hackers broke in using stolen credentials — and no MFA, says UHG CEO
Zack Whittaker reports: The ransomware gang that hacked into U.S. health tech giant Change Healthcare used a set of stolen credentials to remotely access the company’s systems that weren’t protected by multifactor authentication (MFA), according to the chief executive of its parent company, UnitedHealth Group (UHG). UnitedHealth CEO Andrew Witty provided the written testimony ahead of a…
Cybersecurity firm suspects Russia-linked hacking group behind cyberattack on Texas water facility
Tom Olson reports: A hacking group with ties to the Russian government is suspected of carrying out a cyberattack in January that caused a tank at a Texas water facility to overflow, experts from US cybersecurity firm Mandiant said Wednesday. The attack took place in Muleshoe, Texas, and coincided with other towns in north Texas…
Ie: Authorities investigating ransomware attack on charity that works with vulnerable children
The Journal reports: A police investigation has been launched after a charity that works with vulnerable children suffered a data breach in a ransomware attack. Extern, a cross-border social justice charity with offices in Belfast and Co Kildare, has confirmed that it has been the victim of a large ransomware cyber attack. One source told The…
Hacker’s attempt to sue police is ‘abuse of process’
RL360 Insurance Company Limited is an international offshore savings, protection and investment provider, headquartered in the Isle of Man. According to Wikipedia, it is part of the International Financial Group Limited. Threefm reports that John Henry Griffin, a former RL360 employee who was convicted of unauthorized access to data and unlawful acquisition of personal data,…
Updating: Fake seizure notice appears on AlphV site as part of suspected exit scam
In the wake of an accusatory post on Ramp Forum that claimed that AlphV admins allegedly stole a $22 million payment to an affiliate by Change Healthcare and then suspended the affiliate’s account, AlphV hastened what appears to be an exit scam on their part. Yesterday, a copy of the seizure notice posted on their…