Marco A. De Felice writes: More than a week after the May 18 cyber attack, the computer systems of the Waikato District Health Board (Waikato DHB) have not yet been restored. Some scheduled surgeries in DHB’s five hospitals have been postponed, while non-urgent cases are postponed until all IT systems are back in operation. From…
Category: Malware
A former DarkSide listing shows up on REvil’s leak site
On May 15, Chum1ng0 reported that German furniture retailer Möbelstadt Sommerlad had been hit by DarkSide threat actors. By then DarkSide’s leak site was down and it had not been possible to confirm whether DarkSide had ever listed the retailer as a victim or dumped any proof of claim, but given the time frame of…
NZ: Volunteer Service Abroad targetted by ‘sophisticated’ ransomware attack
Matthew Tso reports: Ransomware attackers have targeted New Zealand’s largest volunteer agency working in international development. On Wednesday Volunteer Service Abroad (VSA) announced it had been the victim of a “sophisticated” ransomware attack. Chief executive Stephen Goodman said the non-governmental organisation was hit last week, with attackers locking its computer systems and demanding a ransom….
Ransomware Unmasked: Dispute Reveals Ransomware TTPs
Two of the more well-known Russian-language forums have “arbitration” or “complaint” sections where members can present complaints and evidence against other members involving financial disputes or claims. Those disputes, with evidence provided non-publicly to the moderators/arbitrators, often provide interesting insights into threat actors’ methods or relationships. In the past few weeks, there have been two…
Mercy University Hospital secures court injunction against ransomware hackers
Aodhan O’Faolain reports: A Cork-based hospital has secured injunctions from the High Court restraining any sharing, processing, selling or publishing of data believed stolen from its computer systems in the cyberattack. The orders were made in favour of the Mercy Hospital Cork against “persons unknown” responsible for accessing the hospital’s IT system, that is separate…
Headphone and speaker maker Bose discloses ransomware attack
Catalin Cimpanu reports: Audio equipment manufacturer Bose said it was the victim of a ransomware attack that took place earlier this year, on March 7. The attack hit the company’s US-based systems and was detected on the same day it occurred, but not before hackers deployed the ransomware across the company’s internal network. Read more…