Seen at http://wycokck.org/: Published on April 19, 2022 UPDATE ON SERVICE IMPACTS: WEDNESDAY, APRIL 20, 2022 The Unified Government has been working through a comprehensive assessment of the impact of the recent cybersecurity attack on our systems and services. Work to restore services is underway. As of this afternoon, the following services are impacted: Appraiser’s…
Category: Malware
Russian state hackers hit Ukraine with new malware variants
Bill Toulas reports: Threat analysts report that the Russian state-sponsored threat group known as Gamaredon (a.k.a. Armageddon/Shuckworm) is launching attacks against targets in Ukraine using new variants of the custom Pteredo backdoor. Gamaredon has been launching cyber-espionage campaigns targeting the Ukrainian government and other critical entities since at least 2014. Read more at BleepingComputer.
Joint Cybersecurity Advisory: TraderTraitor: North Korean State-Sponsored APT Targets Blockchain Companies
From the Summary: The Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), and the U.S. Treasury Department (Treasury) are issuing this joint Cybersecurity Advisory (CSA) to highlight the cyber threat associated with cryptocurrency thefts and tactics used by a North Korean state-sponsored advanced persistent threat (APT) group since at least 2020….
Learning Opportunities from Ransomware and Redline Infostealer Events Inside America’s Universities
Britton White writes: After a university was recently hit with Ransomware, I decided to research the university’s domain name searching for any users who might have been hit with Redline Infostealer/Malware. To no surprise, I found many students had unknowingly had their saved browser credentials scraped (stolen/exfiltrated). It didn’t take long to find a student…
Conti’s Ransomware Toll on the Healthcare Industry
Brian Krebs reports: Conti — one of the most ruthless and successful Russian ransomware groups — publicly declared during the height of the COVID-19 pandemic that it would refrain from targeting healthcare providers. But new information confirms this pledge was always a lie, and that Conti has launched more than 200 attacks against hospitals and other…
RIPTA says it paid hackers $170K in ransom money after massive data breach
ABC6 reports: The Rhode Island Public Transit Authority said Thursday it paid hackers $170,000 in ransom money after a massive data breach in August. The hack exposed the names, birth dates, and social security numbers of thousands of state employees, some of which didn’t even work for the agency. Read more at ABC6. The incident, which affected 22,000…