On September 4, UC Health in Cincinnati disclosed that it is investigating a recent email phishing incident that may have involved patient information. In a press release posted on their site, they report that on July 6, they learned of a phishing attack that led to unauthorized access to “a limited number of UC Health…
Category: Phishing
BEC overtakes ransomware and data breaches in cyber-insurance claims
Catalin Cimpanu reports: Business email compromise (BEC) has overtaken ransomware and data breaches as the main reason companies filed a cyber-insurance claim in the EMEA (Europe, the Middle East, and Asia) region last year, said insurance giant AIG. According to statistics published in July, AIG said that BEC-related insurance filings accounted for nearly a quarter…
Phishing scheme gains entry to Oregon Judicial Department emails
Aubrey Wieber reports: A phishing scheme succeeded in breaking into the email accounts of five Oregon Judicial Department employees, exposing personal information of more than 6,000 people. A forensic team determined that none of the information has been used in an inappropriate way so far. Read more on Mail Tribune.
NZ: Hospital emails stolen in phishing scam
CCDHB reports: A Capital & Coast DHB staff member has fallen victim to an email phishing scam which took thousands of emails from their address to other email addresses across New Zealand and internationally. But no private or patient information has been compromised. The staff member’s email address was immediately locked down to prevent further…
Portland Public Schools Recovers $2.9 Million Lost in BEC Scam
Sergiu Gatlan reports: Oregon urban school district Portland Public Schools is on track to recover roughly $2.9 million wired by district employees to a BEC scammer, after discovering the fraudulent transactions before the money left the fraudster’s accounts. Portland Public Schools is a PK-12 urban school district in Portland, Oregon, with over 49,000 students enrolled in 81 schools,…
Adwind Spyware-as-a-Service Attacks Utility Grid Operators
Tara Seals reports: A phishing campaign targeting utility grid operators uses a PDF attachment to deliver spyware. A phishing campaign that spoofs a PDF attachment to deliver Adwind spyware has been taking aim at national grid utilities infrastructure. Adwind, a.k.a. JRAT or SockRat, is being used in a malware-as-a-service model in this campaign, researchers said….