Brian Krebs reports: Several domain names tied to Genesis Market, a bustling cybercrime store that sold access to passwords and other data stolen from millions of computers infected with malicious software, were seized by the Federal Bureau of Investigation (FBI) today. Sources tell KrebsOnsecurity the domain seizures coincided with “dozens” of arrests in the United…
Category: Of Note
Unpacking the Structure of Modern Cybercrime Organizations
David Sancho, Mayra Rosario Fuentes report: The last 20 years have seen the cyberthreat landscape transform markedly: From an era of cyberattacks with damaging payloads, the cybercrime space has evolved to one where malicious actors have organized themselves into groups, mainly driven by financial gain. Consequently, organizations now contend with a new breed of cybercriminals…
Developing: Stormous claims to have attacked hospital; apologizes minutes later, pledges to undo damage, and seeks forgiveness (Update1: was this a scam?)
Stormous Ransomware added Cameron Memorial Community Hospital in Indiana to their leak site today and posted a pointer to it on their Telegram channel. Then they appeared to regret their actions, posting the following only minutes later: We are writing to express our sincerest apologies for the recent ransomware attack on hospital IT systems. We…
Fake ransomware gang targets U.S. orgs with empty data leak threats
Ionut Ilascu reports: Fake extortionists are piggybacking on data breaches and ransomware incidents, threatening U.S. companies with publishing or selling allegedly stolen data unless they get paid. Sometimes the actors add the menace of a distributed denial-of-service (DDoS) attack if the message recipient does not comply with the instructions in the message. Read more about…
FDA requires medical devices be secured against cyberattacks
Jennifer Korn reports: The Food and Drug Administration will now require medical devices meet specific cybersecurity guidelines after years of concerns that a growing number of internet-connected products used by hospitals and healthcare providers could be hit by hacks and ransomware attacks. Under FDA guidance issued this week, all new medical device applicants must now submit a…
Florida city water cyber incident allegedly caused by employee error
There is an update to a story posted on DataBreaches in 2021 about a scary-sounding attempt to hack and control the water treatment plant in Oldsmar, Florida. Today, Chris Teale reports that no, it wasn’t that at all. It was just an employee clicking on some wrong buttons before he informed his supervisor of his…