Ryan Tomcik, Adrian McCabe, Rufus Brown, and Geoff Ackerman write: Earlier this year, Mandiant’s Managed Defense threat hunting team identified an UNC2975 malicious advertising (“malvertising”) campaign promoting malicious websites themed around unclaimed funds. This campaign dates back to at least June 19, 2023, and has abused search engine traffic and leveraged malicious advertisements to affect…
Category: Commentaries and Analyses
AHA opposes HHS’ plan for cybersecurity fines
Naomi Diaz reports: The American Hospital Association said HHS’ plan to levy financial penalties in the event of a cyberattack on a healthcare organization would be counterproductive. In a Dec. 6 statement, the AHA said it is advocating for the HHS to review its proposal that requires healthcare organizations to be compliant with new cybersecurity requirements and…
Ted Cruz wants to stop the FCC from updating data-breach notification rules
Jon Brodkin reports: Sen. Ted Cruz (R-Texas) and other Republican senators are fighting a Federal Communications Commission plan to impose new data-breach notification requirements on telecom providers. In a letter sent to FCC Chairwoman Jessica Rosenworcel today, the senators claim the pending FCC action would violate a congressional order. The letter was sent by Cruz, Sen. Minority…
Alleged Chinese cyberattacks target US power and water systems
Duncan Riley reports: U.S. government officers and cybersecurity experts are warning that the Chinese military is allegedly attempting to infiltrate critical infrastructure, including power and water utilities and transportation systems in the U.S. The Washington Post reported, referencing unnamed officials and security experts, that hackers allegedly affiliated with China’s People’s Liberation Army have burrowed into the…
Did Akumin experience two cyber attacks in October and November? It has only acknowledged one. (1)
On October 25, DataBreaches reported that Akumin’s ability to provide diagnostic services at some locations remained disrupted two weeks after they detected suspicious activity on their network. What they subsequently identified as a ransomware attack occurred during a time when Akumin was also dealing with bankruptcy. While there was some resolution of financial issues, things…
North Korean hacking ops continue to exploit Log4Shell
AJ Vicens reports: Two years after the Log4j vulnerability was revealed, North Korean hackers are continuing to use the flaw in a ubiquitous piece of open source software to carry out attacks as part of a hacking campaign targeting manufacturing, agricultural and physical security entities, according to research released Monday. Carried out over the course…