Stephanie Condon reports: The FBI has filed charges against a Chinese malware broker named Yu Pingan, alleging that he provided hackers with malware, including the Sakula trojan, to breach multiple computer networks belonging to companies in the US. The FBI alleges that Yu, also known as “GoldSun,” conspired with two unnamed hackers from around April…
Category: Malware
KS: When your incident response creates a second problem….
On August 16, Salina Family Healthcare posted a substitute notice about a ransomware incident: Salina, Kansas – August 16, 2017 – Salina Family Healthcare Center (“SFHC”) has become aware of a data security incident that may have resulted in the disclosure of personal and protected health information of our patients and payment guarantors. Although at…
Is The Hutchins Indictment Over Malware Unconstitutional?
Alex Berengaut of Covington & Burling analyzes some of the legal issues raised by the indictment of Marcus Hutchins (@malwaretechblog) for allegedly creating and conspiring to sell malware known as the Kronos banking trojan. He writes, in part: Since Hutchins’ indictment, commentators have questioned whether the creation and selling of malware—without actually using the malware—violates…
Tx: Institute for Women’s Health warns patients personal data compromised in network hack
Samantha Ehlinger reports: The Institute for Women’s Health warned patients that hackers may have stolen some of their personal information or credit or debit card data, the physicians’ group said Thursday. The San Antonio OBGYN practice said a so-called keylogger virus was installed on its network on June 5. The virus was discovered July 6…
Pacific Alliance Medical Center notifies 266,123 patients of ransomware incident
From their web site, the following breach notification. According to their report to HHS, 266,123 patients were notified. Notice of Data Breach At Pacific Alliance Medical Center (PAMC), we understand that the confidentiality and security of medical and personal information is critically important, and we are committed to protecting it. The purpose of this post…
KR: South Korea LG service centers attacked by ransomware
The Korea Herald reports: A ransomware attack resembling WannaCry’s malicious code has attacked South Korean tech giant LG Electronics’ service centers. LG Electronics’ service centers were attacked by ransomware this week, with the malicious code used possibly identical to the WannaCry ransomware attack, one of the largest cyberattacks that struck in May, according to security…