We often hear about the challenges rural hospitals face in preventing and responding to cyberattacks. Here’s an article that provides some numbers for context. Don Gronning reports: Small hospitals have been a target of cyber criminals, hospital district CEO Kim Manus told Pend Oreille Hospital District No. 1 commissioners at their regular meeting Thursday, July…
Category: Commentaries and Analyses
Canadian cybercriminal sentenced to a year in prison for NFT theft scheme
ALEXANDRIA, Va. – A Canadian was sentenced yesterday to a year in prison for conspiracy to commit wire fraud, wire fraud, and conspiracy to commit aggravated identity theft. According to court documents, in May 2022, Cameron Albert Redman, 22, of Mississauga, Ontario, formed a scheme to steal non-fungible tokens (NFTs) by gaining unauthorized access to…
Scattered Spider Hijacks VMware ESXi to Deploy Ransomware on Critical U.S. Infrastructure
Ravie Lakshmanan reports: The notorious cybercrime group known as Scattered Spider is targeting VMware ESXi hypervisors in attacks targeting retail, airline, and transportation sectors in North America. “The group’s core tactics have remained consistent and do not rely on software exploits. Instead, they use a proven playbook centered on phone calls to an IT help desk,” Google’s…
Two Data Breaches in Three Years: McKenzie Health
SuspectFile reports: Between 2022 and 2025, McKenzie Health System, which operates the McKenzie Memorial Hospital in rural Michigan, was hit by two major data breaches. Combined, the attacks compromised the personal and medical information of more than 79,000 patients. Although the incidents are technically distinct, they reveal a troubling pattern of systemic vulnerabilities and raise critical questions about the resilience of smaller…
Scattered Spider is running a VMware ESXi hacking spree
Bill Toulas reports: Scattered Spider hackers have been aggressively targeting virtualized environments by attacking VMware ESXi hypervisors at U.S. companies in the retail, airline, transportation, and insurance sectors. According to the Google Threat Intelligence Group (GITG), the attackers keep employing their usual tactics that do not include vulnerability exploits but rely on perfectly executed social engineering…
BreachForums — the one that went offline in April — reappears with a new founder/owner
After BreachForums went offline in April, several clones emerged to try to replace it, but none were truly successful. Yesterday, the “official” BreachForums (if it can be said that there is an “official” one) reappeared on its darkweb address. The forum looked the same and some of the moderators’ names were familiar, but it was…