“Goodbye isn’t the end. It’s the beginning of what happens next.” — Joshua Shaw Reading the news, I see some headlines suggesting that “Scattered LAPSUS$ Hunters” lied in their “Goodbye” message. One headline read, “Security Industry Skeptical of Scattered Spider-ShinyHunters Retirement Claims.” Another read, “Scattered Spider Resurfaces With Financial Sector Attacks Despite Retirement Claims,” and…
Category: Malware
Teen Suspect Surrenders in 2023 Las Vegas Casino Cyberattack Case
Corey Levitan reports: A teenage boy suspected of involvement in the 2023 cyberattacks that disrupted the two largest Las Vegas casino companies has surrendered to authorities, according to the Las Vegas Metropolitan Police Department (LVMPD). The suspect, whose name has not been released due to his status as a minor, is currently being held at…
Survival Flight reports second cybersecurity incident in less than a year (1)
Survival Flight is an Arizona-headquartered firm that provides ground and air emergency medical transportation services. On August 12, they issued a substitute notice saying that on July 17, they had discovered a cybersecurity incident affecting its IT systems. In their substitute notice, which has not been updated as of this publication, they wrote: The investigation…
New fugitive uploaded to EU Most Wanted list for major ransomware attacks
From Europol: A high-value cybercrime suspect has been added to the EU Most Wanted list. The individual, a Ukrainian national, is believed to be a leading figure in an organised crime network responsible for the 2019 ransomware attack against a major Norwegian aluminium company, as well as a series of other global cyber-attacks. The fugitive is…
Uvalde CISD to close most of next week due to ransomware issue
KSAT reports: The Uvalde Consolidated Independent School District will close for most of next week after the district detected ransomware in its servers, according to district officials. The district will close from Sept. 15-18 and will exchange the dates it is closed with other previously scheduled non-working days integrated into the current UCISD calendar. The…
Interview with Valéry Rieß-Marchive – Managing Leaks in Ransomware Negotiations
Sean interviews Valéry Rieß-Marchive of LeMagIT: Valéry, co‑founder and editor of LeMagIT and an experienced specialist in cybersecurity and end‑user computing, has long translated complex technologies into practical advice. In this interview, he shares how organizations should manage crisis communication during cyberattacks, with a specific focus on the risks and impacts of leaked ransomware negotiations — from first responses to…