January 04, 2023 TLP:CLEAR Report: 202301041300 Executive Summary Clop operates under the Ransomware-as-service (RaaS) model, and it was first observed in 2019. Clop was a highly used ransomware in the market and typically targeted organizations with a revenue of $5 million U.S. Dollars (USD) or higher. Since its appearance, HC3 is aware of attacks on…
Category: U.S.
Russian hackers targeted U.S. nuclear scientists
James Pearson and Christopher Bing reports: A Russian hacking team known as Cold River targeted three nuclear research laboratories in the United States this past summer, according to internet records reviewed by Reuters and five cyber security experts. Between August and September, as President Vladimir Putin indicated Russia would be willing to use nuclear weapons to defend…
Report: 25% of Districts Victimized by Cyber Attacks in 2022
Giovanni Albanese reports: San Francisco-based Clever on Thursday released its Cybersecure 2023 report, based on October 2022 surveys of an excess of 800 administrators and more than 3,000 teachers in the U.S. The respondents had differing views on a wide number of issues but the two sides are in agreement that schools need better training, technology and…
University of Miami Health breach notice
Remember when Britton White and DataBreaches discussed employees having their work credentials compromised by infostealers and how employers might want to require employees to notify them whenever an employee’s device was compromised if the device had stored login credentials? University of Miami Health posted a breach notice this week that caught my eye. From the…
PA: Maternal & Family Health Services reveals ransomware incident
Maternal & Family Health Services (“MFHS”) in Pennsylvania has issued a press release about what they describe as a “sophisticated ransomware incident.” At this point, given so many ransomware attacks over the past few years, DataBreaches has no idea what would be considered “sophisticated.” In any event, MFHS began notifying potentially affected individuals, including certain…
Swansea Public Schools cancel classes Wednesday after ransomware attack
Ryan Mancini reports: Schools canceled classes on Wednesday after the Swansea Public Schools was reportedly struck by a ransomware attack. Superintendent John J. Robidoux informed families on Tuesday that the district’s network was shut down. Read more at MassLive. h/t, Doug Levin