December 07, 2022 TLP:CLEAR Report: 202212071400 Executive Summary Royal is a human-operated ransomware that was first observed in 2022 and has increased in appearance. It has demanded ransoms up to millions of dollars. Since its appearance, HC3 is aware of attacks against the Healthcare and Public Healthcare (HPH) sector. Due to the historical nature of…
Category: Of Note
Medibank Shutting All Branches, Going Offline, In Security Overhaul
Nathan Jolly reports: Medibank will be closing all branches, IT centres, and going completely offline as it completely overhauls its online security. The country’s biggest health insurer will be completely offline from 8.30pm on Friday until Sunday, in a bid to “further strengthen our systems and enhance security protections” after one of the country’s worst…
Turkish journalist faces 12 years in prison for announcing personal data leak
Turkish Minute reports: Turkish prosecutors are seeking a prison sentence of 12 years for journalist İbrahim Haskoloğlu, who was briefly detained in April after announcing that hackers had stolen personal information from government websites, the journalist announced on social media, the Stockholm Center for Freedom reported. In his tweets in April, Haskoloğlu said a group of…
Paying the Ransom in Response to a Ransomware Attack can Sometimes Backfire
Nolan Goldberg and Margaret Ukwu of Proskauer write: A new study by Hiscox, a privacy and cyber security insurance company, sheds light on additional practical concerns that should be taken into account in that balancing of potential risks and benefits. Hiscox released its sixth annual Cyber Readiness Report 2022. In it, Hiscox raises a number…
After Discovery of Huge Data Breach, Twitter Alternative Hive Goes Offline
Lucas Ropek reports: Not long after Elon Musk took over Twitter and started doing a whole lot of crazy stuff to the platform, the microblogging app Hive Social saw a huge spike in users. Apparently fed up with Elon’s shit, a bunch of people had decided to try out alternative social media sites—and Hive was one of them. Launched back in…
DHS Cyber Safety Review Board to Conduct Second Review on Lapsus$
Press release from the U.S. Department of Homeland Security (DHS): WASHINGTON – Today, the U.S. Department of Homeland Security (DHS) announced that the Cyber Safety Review Board (CSRB) will review the recent attacks associated with Lapsus$, a global extortion-focused hacker group. Lapsus$ has reportedly employed techniques to bypass a range of commonly-used security controls and has successfully infiltrated a…