Lawrence Abrams reports: Johnson Controls International has suffered what is described as a massive ransomware attack that encrypted many of the company devices, including VMware ESXi s […] Yesterday, a source told BleepingComputer that Johnson Controls suffered a ransomware attack after initially being breached at its Asia offices. BleepingComputer has since learned that the company…
Category: Malware
Sale of Waterbury, Rockville, Manchester hospitals in doubt as Yale New Haven officials raise concerns
Eric Bedner reports: The $400 million sale of Waterbury, Rockville, and Manchester hospitals to Yale New Haven Health is in jeopardy as officials from the latter group are raising concerns about the condition of the hospitals they are slated to acquire, particularly following a data breach last month. California-based Prospect Medical Holdings — the parent company…
Baruch College closed for the remainder of the week amid malware attack
Suporna Das reports: Baruch College extended remote learning through Sept. 29 after announcing on Sept. 27 that the network outages across the campus were due to a malware attack. […] Baruch Computing and Technology Center and other departments have restored some of Baruch’s network, including the website and Baruch’s email. It did not state if…
New AtlasCross hackers use American Red Cross as phishing lure
It seems we are finding out about new groups on a daily basis recently. Now Bill Toulas reports on another one: A new APT hacking group named ‘AtlasCross’ targets organizations with phishing lures impersonating the American Red Cross to deliver backdoor malware. Cybersecurity firm NSFocus identified two previously undocumented trojans, DangerAds and AtlasAgent, associated with…
Swan Retail cyber attack woes continue
Sabina Weston reports: More than six weeks after hackers caused “significant disruption” to Swan Retail’s inventory management, order fulfilment and accounting systems, fashion retailers told Drapers the issues have still not been resolved. Sandersons Boutique owner and co-founder Mark Dransfield said the cyber attack on Swan Retail, which occurred on 13 August, “has hugely affected” the…
ShadowSyndicate linked to 7 ransomware attacks in the past year
Kumar Hemant reports: ShadowSyndicate group (formerly known as Infra Storm) has been suspected of deploying seven different ransomware families in a series of attacks that have spanned the past year. Security researchers from Group-IB, working in conjunction with Bridewell and independent researcher Michael Koczwara, exposed the clandestine operations of the threat actor. Their findings point…