On or about December 10, AlphV (aka BlackCat) added DotHouse Health.org to their leak site, where they attempt to pressure victims into paying any ransom demands. In this case, the threat actors did not post any proof pack, but they claimed to have infiltrated 800 GB of data from the Massachusetts HIPAA-covered healthcare provider. On…
Category: Malware
Hackers hit Vesuvius, UK engineering company shuts down affected systems
Graham Cluley writes: Vesuvius, the London Stock Exchange-listed molten metal flow engineering company, says it has been hit by a cyber attack. This morning, Vesuvius issued an alert that it was “currently managing a cyber incident.” Read more at GrahamCluley.com.
Ransomware attack may have caused IT breach that shut all four Cork MTU campuses
Liz Dunphy reports: Munster Technological University (MTU) is working with gardaí and the National Cyber Security Centre to establish if a major IT breach that led to the closure of its four Cork campuses is linked to an international ransomware attack on hundreds of organisations. MTU’s four Cork campuses will remain closed today and an update is…
CISA Releases Recovery Tool for VMware Ransomware Victims
Phil Muncaster reports: The US Cybersecurity and Infrastructure Security Agency (CISA) has published a new script designed to help ransomware victims recover any VMware virtual machines (VMs) impacted by a current global campaign. Ransomware payment tracker Ransomwhere estimated the number of victims at 3800, based on an “internet-wide” scanning effort on Monday. It said four payments had been made…
Suspected Ransomware Attack Disables Some Systems At Ross Memorial Hospital
Pamela Vanmeer reports: Kawartha 411 News has learned a suspected ransomware attack has hit Ross Memorial Hospital disabling some important diagnostic systems and access to medical files. Patients in the Emergency Department notified Kawartha 411 this morning calling the situation “crazy”. Patients say staff aren’t able to access the systems needed for treatment and they…
Clop ransomware has now found a new target
Danny Palmer reports: An experimental new version of a prolific form of ransomware has been seen targeting Linux systems for the first time. Clop ransomware first appeared in 2019 and, despite being hit by arrests and takedowns in 2021, continues to operate today, with the discovery of a new variant indicating the group is still keen to…