CL: Attack on multinational SONDA claimed by Medusa The Chilean IT multinational SONDA, which has a presence in 11 countries, has been placed on the leaks page of the threat actor Medusa Locker. Medusa’s leak site displays some file captures from different countries where this company operates. The proof includes an affidavit from SONDA Peru,…
Category: Malware
NZZ has to shut down the newspaper production system after a cyber attack
APA/SDA reports: The “exceptional situation” is also associated with a reduction in the size of the print edition. According to media reports, the attackers are demanding a ransom for the blocked system. The “Neue Zürcher Zeitung” continues to struggle with problems two weeks after a cyber attack on its computers. The publisher shut down central…
PharMerica and BrightSpring Health Services hit by Money Message (update2)
PharMerica, owned by BrightSpring Health, is a national pharmacy network serving partners in over 3,100 long-term care, senior living, IDD/behavioral health, home infusion, specialty pharmacy, and hospital management programs. BrightSpring® Health Services provides comprehensive home and community-based health services to complex populations needing specialized care. Both are headquartered in Kentucky. Earlier today, the Money Message…
Es: Clinic hackers threaten to destroy information about patients with infectious diseases
World Nation News reports the threat actors who attacked Hospital Clínic de Barcelona are threatening to release sensitive medical information on patients. In particular, they warned that “in the near future” they will publish information about patients with infectious diseases and information about the use of experimental drugs in the elderly that the Barcelona center…
Iran-Based Hackers Caught Carrying Out Destructive Attacks Under Ransomware Guise
Ravie Lakshmanan reports: The Iranian nation-state group known as MuddyWater has been observed carrying out destructive attacks on hybrid environments under the guise of a ransomware operation. That’s according to new findings from the Microsoft Threat Intelligence team, which discovered the threat actor targeting both on-premises and cloud infrastructures in partnership with another emerging activity cluster dubbed DEV-1084….
Aspire Public Schools reveals 2022 breach; Rochester Public Schools dealing with current attack
Notices of breaches involving two school breaches showed up today in DataBreaches’ searches: Aspire Public Schools in California submitted notifications to at least two state attorneys general. According to its notification, Aspire learned that an unauthorized party gained access to one Aspire email account at various times between February 2022 and August 2022. There was…