On February 16, DataBreaches.net reported that Conti threat acctors had apparently attacked Rehoboth Mckinley Christian Health Care Services, Inc (RMCHCS) in New Mexico. As it has done in similar attacks, the threat actors dumped a small sample of files as proof. The files include copies of handwritten injury reports and other reports related to named individuals’…
Category: Malware
Update: Nocona General Hospital “recently” learned of a breach we reported in early February
On February 4, DataBreaches.net reached out to Nocona General Hospital (NGH) in Texas about an attack claimed by Conti threat actors the previous day. The hospital did not respond. On February 7, this site emailed NGH, writing, in part, “I see that Conti threat actors have dumped files that they claimed they copied and stole…
Look how many cybercriminals love Cobalt Strike
From Intel471: Since its release in 2012, Cobalt Strike has been one of the most popular tools for penetration testers to use when simulating how known threat actor tools will look when targeting an organization’s network. However, there is a downside to that popularity: the criminals love it, too. And if they are using it,…
Colonial Pipeline confirms it paid $4.4 million to hackers
Cathy Bussewitz of AP reports: The operator of the nation’s largest fuel pipeline confirmed it paid $4.4 million to a gang of hackers who broke into its computer systems. Colonial Pipeline said Wednesday that after it learned of the May 7 ransomware attack, the company took its pipeline system offline and needed to do everything…
Cyber attack has caused ‘enormous risk’ – HSE official
RTÉ reports: The Health Service Executive’s National Clinical Adviser for Acute Operations has said there is an “enormous risk” across health services following the cyber attack last week which forced a shutdown of the HSE’s IT systems. Speaking on RTÉ’s Morning Ireland, Dr Vida Hamilton said it is a “major disaster” and described it as…
Cyberattack targeting Alaska’s state health department website disrupts some online services
From the Anchorage Daily News: A malware attack targeting the Alaska Department of Health and Social Services’ website has prompted the disruption of some online services as the website remains unavailable to the public, the state health department said Tuesday evening. Investigators have not yet determined whether the cyberattack compromised confidential or personal information, DHSS…