From CISA Release Date: July 06, 2023 Alert Code: AA23-187A SUMMARY The Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), the Multi-State Information Sharing and Analysis Center (MS-ISAC), and the Canadian Centre for Cyber Security (CCCS) are releasing this joint Cybersecurity Advisory (CSA) in response to cyber threat actors leveraging newly…
Category: Malware
“Almost everything you have posted in your news article about this incident is a total crap” — BlackCat to Bangladeshi news outlets
On June 23, using the greeting that Hive ransomware always used in emailing victims, AlphV wrote to the Bangladesh Krishi Bank (BKB). Typos, grammar, and spelling as in the original: Hello,Ladies and Gentlemen! This is ALPHV Ransomware Team. We are here to inform you about data breach which took place at the “Bangladesh Krishi Bank”…
Police arrest suspect linked to notorius OPERA1ER cybercrime gang
Sergiu Gatlan reports: Law enforcement has detained a suspect believed to be a key member of the OPERA1ER cybercrime group, which has targeted mobile banking services and financial institutions in malware, phishing, and Business Email Compromise (BEC) campaigns. The gang, also known as NX$M$, DESKTOP Group, and Common Raven, is suspected of having stolen between…
Au: Atherfield Medical & Skin Cancer Clinic victim of cyberattack by Cyclops
Australia has experienced a number of significant cyberattacks on healthcare entities in the past few years. Now a relatively new ransomware group, Cyclops, claims to have attacked Atherfield Medical & Skin Cancer Clinic in Australia: In Cyclops’ listing (above), there is a date of June 29, which appears to be the date they uploaded…
Why ransomware groups are targeting Indian pharma companies and the healthcare sector; ClearMedi allegedly hacked
Naandika Tripathi reports: Just three months after a ransomware attack pulled down India’s largest drugmaker, Sun Pharmaceuticals, the threat actors went after another pharma company. Hyderabad-based Granules India was notified of a significant loss of revenue and profitability due to a cybersecurity attack in the last week of May. […] From Dr. Reddy’s to the…
Ransomware Attack Hits Japan’s Biggest Port, Disrupting Cargo Shipments
Nicholas Takahashi and Ann Koh report: Japan’s biggest maritime port was crippled by an alleged Russian cyberattack, disrupting cargo as operators rushed to prevent a wider delay in shipments. Ransomware — used by hackers to lock access to files or systems unless a payment is made — caused a container terminal at the Port of…