Sergiu Gatlan reports: Russian-speaking hacking group Turla has hacked into the systems of an undisclosed European government organization according to a new Accenture Cyber Threat Intelligence (ACTI) report. This attack perfectly lines up with Turla’s information theft and espionage motivation and its persistent targeting of government-related entities from a wide range of countries. Read more on BleepingComputer.
Category: Commentaries and Analyses
Aetna Pays $1,000,000 to Settle Three HIPAA Breaches
A new press release from HHS today reveals that multiple breaches in 2017 contributed to HHS finding significant problems with Aetna: Aetna Life Insurance Company and the affiliated covered entity (Aetna) has agreed to pay $1,000,000 to the Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services (HHS) and to…
An Interview with “UNKN” Sheds Light on REvil’s Operations & Future Victims
Yelisey Boguslavskiy writes: On October 23, 2020, a Russian-speaking tech blog YouTube channel “Russian OSINT” published an interview with one of the representatives of the REvil ransomware syndicate – “UNKN”/”Unknown”. A twenty-minute interview covers important subjects such as victims, tactics, and strategies employed by REvil. While some of the information shared by UNKN has already…
AU: ADHA records two My Health Record security incidents in FY20
Aimee Chanthadavong reports: The agency responsible for oversight of My Health Record has revealed there were two incidents that compromised the medical records system during the 2019-20 financial year. In its annual report, the Australian Digital Health Agency (ADHA) outlined how one matter reported to the Office of the Australian Information Commissioner (OAIC) involved a breach to…
As international travel services re-open, fraudsters resume
When COVID-19 travel restrictions eased as countries tried to re-open borders to travelers, researchers at Gemini Advisory observed that the sale of travel services — both legal and illegal — started to increase, opening up more opportunities for cybercriminals to monetize stolen payment card data. For those not really knowledgeable about travel services fraud, Gemini…
Data breaches upping ATO fraud ‘red flags’
Asha Barbaschow reports: The Australian Taxation Office (ATO) has a “red flag” feature, which serves up a “ping” whenever an individual or business has been suspected of having fraudulent activity conducted against their name or if their account has been compromised. Facing Senate Estimates on Tuesday, ATO client engagement second commissioner Jeremy Hirschhorn explained that…