November 9, 2022 TLP: Clear Report: 202211091400 Executive Summary HC3 is aware of at least one healthcare entity in the United States falling victim to Venus ransomware recently. The threat actors behind Venus ransomware operations are known to target publicly exposed Remote Desktop Services to encrypt Windows devices. This report provides additional information, indicators of…
Category: Commentaries and Analyses
Canadian police arrest suspected LockBit ransomware operator (updated)
Is the end of LockBit near? First an irate developer leaked the builder code for LockBit 3.0 code on GitHub in September. And now one of their big operators has been arrested in Canada. Howard Solomon reports: Canadian police have arrested a Russian citizen who they say is one of the world’s most prolific ransomware…
State hit by largest sustained Election Day cyberattack warns ‘it’s only going to get worse’
Mark Albert reports: The longest sustained cyberattack against election websites in America on Election Day did not affect any votes but caused disruptions to voters’ efforts to determine their polling locations and access other information, Michael Watson, Mississippi’s secretary of state, said in his first interview about the attack. Watson, the state’s top election administrator,…
Taking down a ransomware hacker
An FBI investigation into a criminal ransomware gang believed to be tied to Russia led to a Canadian government employee in Gatineau, the largest cryptocurrency seizure in Canadian history and hundreds of victims around the world. Roxanna Woloshyn, Marie-Maude Denis and Linda Guerriero report: In the early morning hours of Jan. 27, 2021, two police…
Manitoba’s healthcare privacy breach numbers ‘truly alarming’
Katrina Clarke reports: Manitoba hospital workers have breached patients’ privacy more than 1,000 times in the last three years — but how many were disciplined and what consequences they faced is unclear. It’s an issue one ethicist calls “alarming,” saying the public deserves to know more about workers snooping into sensitive files. Data obtained by…
Bug Bounties and Ransomware Demands: Storm Clouds Ahead for In-House Counsel
Michael Ward, Matthew Baker, and Jessica Wu of Baker Botts write about the conviction of Uber’s former security chief for felony violations of obstructing a Federal Trade Commission investigation and “misprision of felony” for failing to disclose a 2016 data breach. They then discuss issues for in-house counsel that the case raises, beginning with: Action…