Bill Toulas reports: A new advanced persistent threat (APT) group named CloudSorcerer abuses public cloud services to steal data from Russian government organizations in cyberespionage attacks. Kaspersky security researchers discovered the cyberespionage group in May 2024. They report that CloudSorcerer uses custom malware that uses legitimate cloud services for command and control (C2) operations and data storage….
Category: Non-U.S.
Ph: 42 million people possibly affected by 2023 Philippine Health Insurance cyberattack
Vivienne Gulla reports: The records of around 42 million individuals are possibly affected by the 2023 data breach on Philippine Health Insurance Corporation (PhilHealth), according to the National Privacy Commission (NPC). NPC’s Maria Theresita Patula issued the statement during Monday’s oversight hearing of the House Committee on Appropriations regarding the budget of PhilHealth and the…
In: KEM staffers make paper plates out of patient reports; notice issued
Read the following story seen on Business Standard and then tell me what word you would use to describe your reaction. The administration of King Edward Memorial (KEM) Hospital, a civic-run facility, has issued show-cause notices to six staff members following the circulation of a video showing paper plates made from folders of patients’ reports….
Ransomware group who hit Indonesian government apologizes, hands over encryption key
Laura Dobberstein reports: Brain Cipher, the group responsible for hacking into Indonesia’s Temporary National Data Center (PDNS) and disrupting the country’s services, has seemingly apologized for its actions and released an encryption key to the government. That key was in the form of an 54 kb ESXi file. Its efficacy has not yet been confirmed….
“Sadly for the feds I have not been arrested” – RansomedVC
The man known as “Kmeta,” “Impotent,” “RansomedVC,” and other monikers says he is not “Emil Kyulev” and has not been arrested. On June 30, DataBreaches reported on the arrest of a 21-year-old Bulgarian man, Teodor Iliev, who is accused of being the threat actor known as “Emil Külev” (“Emil Kyulev”). DataBreaches subsequently noted some confusion…
Za: Cybersecurity breach causes lab test delays, says Gauteng health department
TimesLIVE reports an update on a ransomware attack on the National Health Laboratory Services. The attack was confirmed by NHLS on June 25 and is still significantly impacting services. DataBreaches has not spotted any ransomware group or threat actor claiming responsibility for this one. There are delays in processing laboratory tests across public health facilities…