Lawrence Abrams reports: Ex-Conti ransomware members have teamed up with the FIN7 threat actors to distribute a new malware family named ‘Domino’ in attacks on corporate networks. Domino is a relatively new malware family consisting of two components, a backdoor named ‘Domino Backdoor,’ which in turn drops a ‘Domino Loader’ that injects an info-stealing malware…
Category: Malware
Daggerfly Cyberattack Campaign Hits African Telecom Services Providers
Ravie Lakshmanan reports: Telecommunication services providers in Africa are the target of a new campaign orchestrated by a China-linked threat actor at least since November 2022. The intrusions have been pinned on a hacking crew tracked by Symantec as Daggerfly, and which is also tracked by the broader cybersecurity community as Bronze Highland and Evasive Panda….
State’s second-largest health insurer suffers cybersecurity attack
Jessica Bartlett reports: The state’s second-largest insurer suffered large technical outages due to a cybersecurity ransomware incident. Point32Health, the parent company for Tufts Health Plan and Harvard Pilgrim Health Care, said in a memo on its website that it identified a ransomware incident on Monday, affecting the systems it uses to service members, accounts, brokers…
Capita IT breach gets worse as Black Basta claims it’s now selling off stolen data
Jessica Lyons Hardcastle reports: Black Basta, the extortionists who claimed they were the ones who lately broke into Capita, have reportedly put up for sale sensitive details, including bank account information, addresses, and passport photos, stolen from the IT outsourcing giant. A spokesperson for the London-based corporation, which has UK government contracts totaling £6.5 billion…
Hackers Stole School Data. The District Left Teachers in the Dark
More on the Tucson Unified School District ransomware attack by Royal. Jack Gillum reports: Classrooms across Tucson, Arizona, were ravaged by ransomware in January that locked up computer systems and forced teachers to revamp lesson plans. Officials in southern Arizona’s largest school district tried assuring students and staff for weeks that, despite the cyberattack, sensitive data wasn’t…
No evidence found of Little Rock School District data use after ransomware incident
Cynthia Howell reports: The Little Rock School District, a victim of a 2022 data security attack, is telling its past and present employees, student families and vendors that there is no evidence that their personal data has been “viewed, used or misused.” However, that announcement — posted recently on the 21,000-student district’s website — also…