Zack Whittaker reports: The ransomware gang that hacked into U.S. health tech giant Change Healthcare used a set of stolen credentials to remotely access the company’s systems that weren’t protected by multifactor authentication (MFA), according to the chief executive of its parent company, UnitedHealth Group (UHG). UnitedHealth CEO Andrew Witty provided the written testimony ahead of a…
Category: Breach Incidents
Cybersecurity firm suspects Russia-linked hacking group behind cyberattack on Texas water facility
Tom Olson reports: A hacking group with ties to the Russian government is suspected of carrying out a cyberattack in January that caused a tank at a Texas water facility to overflow, experts from US cybersecurity firm Mandiant said Wednesday. The attack took place in Muleshoe, Texas, and coincided with other towns in north Texas…
Ie: Authorities investigating ransomware attack on charity that works with vulnerable children
The Journal reports: A police investigation has been launched after a charity that works with vulnerable children suffered a data breach in a ransomware attack. Extern, a cross-border social justice charity with offices in Belfast and Co Kildare, has confirmed that it has been the victim of a large ransomware cyber attack. One source told The…
Hacker’s attempt to sue police is ‘abuse of process’
RL360 Insurance Company Limited is an international offshore savings, protection and investment provider, headquartered in the Isle of Man. According to Wikipedia, it is part of the International Financial Group Limited. Threefm reports that John Henry Griffin, a former RL360 employee who was convicted of unauthorized access to data and unlawful acquisition of personal data,…
Updating: Fake seizure notice appears on AlphV site as part of suspected exit scam
In the wake of an accusatory post on Ramp Forum that claimed that AlphV admins allegedly stole a $22 million payment to an affiliate by Change Healthcare and then suspended the affiliate’s account, AlphV hastened what appears to be an exit scam on their part. Yesterday, a copy of the seizure notice posted on their…
HHS Statement Regarding the Cyberattack on Change Healthcare
March 5. The U.S. Department of Health and Human Services (HHS) is aware that Change Healthcare – a unit of UnitedHealth Group (UHG) – was impacted by a cybersecurity incident in late February. HHS recognizes the impact this attack has had on health care operations across the country. HHS’ first priority is to help coordinate…