A recent report headlining that 560 healthcare facilities were impacted by ransomware attacks in 2020 may have seemed shocking until you realize any one ransomware attack can impact multiple hospitals or clinics in a network (just think of the Universal Health Services incident where the Pennsylvania-based system took 400 facilities offline when they were attacked). …
Category: Malware
Ucar reveals cyberattack earlier this year
Lesechos reports (translation): The vehicle rental company Ucar revealed on Wednesday January 20 that it had been the target of ransomware earlier this year. The hackers found a gateway into its servers and rushed into it. “The full analysis of the attack, its depth and the associated issues, is still ongoing, ” said Nicolas Martin,…
UK: Trafford bin collection firm suffers major cyber attack with contracts, passports, financial details leaked publicly
Alice Richardson reports: The company in charge of Trafford’s bin collections and cleaning the borough’s street has suffered a major cyber attack and sensitive personal, financial and commercial details have been leaked. Amey PLC, which has a super contract with Trafford council to manage its infrastructure, was targeted by Mount Lock ransomware group in an…
WA: Okanogan Co. government hit with cyber attack, working to restore systems
Emily Oliver reports: The Okanogan County government is dealing with a computer cyber attack that has impacted its phone system and emails. The attack is also affecting Okanogan County Public Health, according to the Okanogan County Sheriff’s Office. Read more on KXLY. h/t, @Chum1ng0
CHwapi hospital hit by ransomware; operations canceled, and another city hit
Another hospital has been hit with ransomware. The following is a Google translation of a report The CHwapi, hospital center of Picardy Wallonia in Tournai, was the victim of a computer attack on Sunday evening. All non-urgent operations were canceled on Monday. No ransom demand has been demanded, according to management. The CHwapi was the…
FIN11 e-crime group shifted to CL0P ransomware and big game hunting
Derek B. Johnson reports: The financially motivated FIN11, which increasingly incorporated CL0P ransomware into their operations in 2020, appeared to rely on low-effort volume techniques like spamming malware for initial entry, but put a substantial amount of effort into each follow-up compromise. “Several of their recent ransom notes explicitly name data stolen from workstations that…