Christian Vasquez reports: The FBI is seeing progress in the fight against ransomware gangs after conducting more than 30 disruption operations this year in which officials targeted the infrastructure used by those groups, one of the bureau’s top cybersecurity officials said Wednesday. Cynthia Kaiser, deputy assistant director of the FBI’s cyber division, said during CyberScoop’s…
Category: Malware
HHS Office for Civil Rights Settles Ransomware Cybersecurity Investigation for $500,000
A press release from HHS OCR today announces a settlement with Plastic Surgery Associates of South Dakota. In July 2017, DataBreaches reported that the entity was notifying 10,200 patients after a ransomware incident. Today, the U.S. Department of Health and Human Services (HHS), Office for Civil Rights (OCR), announced a settlement with Plastic Surgery…
North Korean Group Collaborates with Play Ransomware in Significant Cyber Attack
Ravie Lakshmanan reports: Threat actors in North Korea have been implicated in a recent incident that deployed a known ransomware family called Play, underscoring their financial motivations. The activity, observed between May and September 2024, has been attributed to a threat actor tracked as Jumpy Pisces, which is also known as Andariel, APT45, DarkSeoul, Nickel Hyatt,…
U.S. Joins International Action Against RedLine and META Infostealers; unseals charges against Maxim Rudometov (1)
AUSTIN, Texas – The Department of Justice joined the Netherlands, Belgium, Eurojust and other partners in announcing an international disruption effort against the current version of RedLine Infostealer, one of the most prevalent infostealers in the world that has targeted millions of victim computers, and the closely-related META Infostealer. The Justice Department, FBI, Naval Criminal…
Russia Tied to Ukrainian Military Recruit Malware Targeting
Mathew J. Schwartz reports: Potential Ukrainian military recruits are being targeted with malware and anti-mobilization messaging through legitimate Telegram channels. A report from Google’s Threat Intelligence Group attributes the “hybrid espionage and information operation” to a suspected Russian group, codenamed UNC5812, whose Telegram persona goes by the handle “Civil Defense.” Telegram remains a vital source of information…
Operation Magnus disrupts Redline and Meta infostealers
From Operation Magnus: On the 28th of October 2024 the Dutch National Police, working in close cooperation with the FBI and other partners of the international law enforcement task force Operation Magnus, disrupted operation of the Redline and Meta infostealers. Involved parties will be notified, and legal actions are underway. Watch their update and stay tuned!…