On August 30, HHS added Queen Creek Medical Center d/b/a Desert Wells Family Medicine in Arizona to its public breach tool. The entity had reported that 35,000 patients were impacted by a breach involving a hack of the network. We now have more details on that incident available thanks to a public disclosure of their…
Category: Malware
New .avos2 variant: AvosLocker affiliate extorts $ 85k from victim thanks to old vulnerability in FortiGate VPN
Marco A. De Felice reports: An affiliate of the AvosLocker ransomware group extorts $ 85,000 in bitcoin from a company thanks to a known vulnerability in FortiGate VPN ( CVE-2018-13379 ). A vulnerability that the American multinational had corrected THANKS TO AN UPDATE released IN NOVEMBER 2019 . Those who have not updated their systems are a small company that…
Th: Hospital hack prompts call for cooperation
Wassayos Ngamkham has some interesting follow-up reporting on the recent attack on Phetchabun Hospital. That hospital and Bhumirajanagarindra Kidney Institute Hospital, both in Thailand, have been recently attacked, with the latter attack interfering with patient services. The Cyber Crime Investigation Bureau (CCIB)’s preliminary investigation reportedly: showed that a group of Indian hackers was behind the…
Groove VS Babuk; Groove Ransom Manifesto & RAMP Underground Platform Secret
I’m not sure if you need to be a threat analyst, a drama critic, or a bit of both these days. But Yelisey Boguslavskiy & Anastasia Sentsova of AdvIntel dive in to some of the recent goings on: On September 7, 2021, a representative of the newly-formed Groove ransomware syndicate decided to share their insights…
Za: Justice Department victim of latest security breach
First it was South Africa’s Space Agency that was attacked. Now it’s their justice department. Dan Meyer reports: The Department of Justice and Constitutional Development has confirmed that it has become the victim of a malicious cyber security hack, with all electronic services provided by the Department – including the issuing of letters of authority,…
Mass data leak after Bar Ilan University refuses to pay hacker $2.5m
After an attack on Bar Ilan University in Israel, it appears that the university refused to pay ransom, and threat actors have dumped some data and may be offering more for sale. The Times of Israel reports: Hundreds of thousands of documents and lists containing personal details of students and lecturers at Bar Ilan University…