David Sancho, Mayra Rosario Fuentes report: The last 20 years have seen the cyberthreat landscape transform markedly: From an era of cyberattacks with damaging payloads, the cybercrime space has evolved to one where malicious actors have organized themselves into groups, mainly driven by financial gain. Consequently, organizations now contend with a new breed of cybercriminals…
Category: Of Note
Developing: Stormous claims to have attacked hospital; apologizes minutes later, pledges to undo damage, and seeks forgiveness (Update1: was this a scam?)
Stormous Ransomware added Cameron Memorial Community Hospital in Indiana to their leak site today and posted a pointer to it on their Telegram channel. Then they appeared to regret their actions, posting the following only minutes later: We are writing to express our sincerest apologies for the recent ransomware attack on hospital IT systems. We…
Fake ransomware gang targets U.S. orgs with empty data leak threats
Ionut Ilascu reports: Fake extortionists are piggybacking on data breaches and ransomware incidents, threatening U.S. companies with publishing or selling allegedly stolen data unless they get paid. Sometimes the actors add the menace of a distributed denial-of-service (DDoS) attack if the message recipient does not comply with the instructions in the message. Read more about…
FDA requires medical devices be secured against cyberattacks
Jennifer Korn reports: The Food and Drug Administration will now require medical devices meet specific cybersecurity guidelines after years of concerns that a growing number of internet-connected products used by hospitals and healthcare providers could be hit by hacks and ransomware attacks. Under FDA guidance issued this week, all new medical device applicants must now submit a…
Florida city water cyber incident allegedly caused by employee error
There is an update to a story posted on DataBreaches in 2021 about a scary-sounding attempt to hack and control the water treatment plant in Oldsmar, Florida. Today, Chris Teale reports that no, it wasn’t that at all. It was just an employee clicking on some wrong buttons before he informed his supervisor of his…
Tracking the Adelanto Healthcare Ventures breach on DataBreaches.net
Yesterday, DataBreaches reported that a vendor’s breach discovered in November 2021 was first being disclosed by a number of hospitals. Rather than do separate posts as each additional hospital becomes known, you can bookmark that post, where you can scroll down and find updates as DataBreaches becomes aware of them. At the present time, we…