Dan Robinson reports: Almost nine in 10 organizations that have suffered a ransomware attack would choose to pay the ransom if hit again, according to a new report, compared with two-thirds of those that have not experienced an attack. The findings come from a report titled “How business executives perceive ransomware threat” by security company…
Category: Malware
Cybercriminal Sentenced To Federal Prison For Decrypting The Credentials Of Thousands Of Computers Across The World And Selling Them On A Dark Web Website
There is an update to the case against Glib Oleksandr Ivanov-Tolpintsev, a Ukrainian who was extradited here in September, 2021 after being arrested in Poland in October, 2020: Tampa, Florida – U.S. District Judge Steven D. Merryday today sentenced Glib Oleksandr Ivanov-Tolpintsev (28, Chernivtsi, Ukraine) to four years in federal prison for conspiring to traffic…
Refuah Health Center “recently discovered” a breach that was listed on the dark web in June, 2021?
On April 29, 2022, Refuah Health Center in New York issued a statement on their website that begins: The privacy and security of the personal and protected health information we maintain is of the utmost importance to Refuah Health Center. We recently discovered unauthorized access to our network occurred between May 31, 2021 and June…
Za: Over 3.6m records exposed in Dis-Chem cyber attack
Admire Moyo reports: Pharmacy retail giant Dis-Chem has become the latest South African organisation to fall victim to a cyber attack. According to the company, the cyber incident emanating from its third-party service provider resulted in data of over 3.6 million South Africans being compromised. The news comes barely two months after TransUnion’s systems were compromised, leaving millions of…
2022 DSIR Deeper Dive: Vendor Incidents
Stefanie Ferrari of BakerHostetler writes: Vendor-caused incidents continued to surge in 2021. Nearly 20 percent of the total incidents we handled last year were caused by vendors, with more than half requiring notification. As in prior years, vendor incidents involved phishing schemes and inadvertent disclosures but primarily resulted from ransomware attacks on the vendors’ systems….
Hackers are now hiding malware in Windows Event Logs
Ionut Ilascu reports: Security researchers have noticed a malicious campaign that used Windows event logs to store malware, a technique that has not been previously documented publicly for attacks in the wild. The method enabled the threat actor behind the attack to plant fileless malware in the file system in an attack filled with techniques…