On February 4, we learned that the government was seeking a 5-year sentence for Canadian hacker Gary Bowser, in addition to restitution, and three years supervised release following prison. Today, Bowser was sentenced to three years in prison. Kate Gray reports: Bowser’s group built and sold devices that were used to hack consoles, which can…
Category: Of Note
CISA Alert (AA22-040A): 2021 Trends Show Increased Globalized Threat of Ransomware
Summary In 2021, cybersecurity authorities in the United States,[1][2][3] Australia,[4] and the United Kingdom[5] observed an increase in sophisticated, high-impact ransomware incidents against critical infrastructure organizations globally. The Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), and the National Security Agency (NSA) observed incidents involving ransomware against 14 of the 16 U.S….
Ransomware dev releases Egregor, Maze master decryption keys
Lawrence Abrams reports: The master decryption keys for the Maze, Egregor, and Sekhmet ransomware operations were released last night on the BleepingComputer forums by the alleged malware developer. […] Fast forward 14 months later, and the decryption keys for these operations have now been leaked in the BleepingComputer forums by a user named ‘Topleak’ who claims to be…
Two Arrested for Alleged Conspiracy to Launder $4.5 Billion in Cryptocurrency Stolen from Bitifinex in 2016
Two individuals were arrested this morning in Manhattan for an alleged conspiracy to launder cryptocurrency that was stolen during the 2016 hack of Bitfinex, a virtual currency exchange, presently valued at approximately $4.5 billion. Thus far, law enforcement has seized over $3.6 billion in cryptocurrency linked to that hack. “Today’s arrests, and the department’s largest…
Indicators of Compromise Associated with LockBit 2.0 Ransomware and Additional Mitigations
On February 4, the FBI issued a Flash Alert: Indicators of Compromise Associated with LockBit 2.0 Ransomware Today, HHS’s Cybersecurity Program issued its companion HC3 alert. It says, in part: Impact to HPH Sector Although the LockBit 2.0 cybercrime gang claims to not attack healthcare organizations, all ransomware continues to act as a major cyber…
HHS: Lessons learned from the HSE cyberattack
HHS Cybersecurity Program has released a new threat brief on lessons learned from the HSE cyberattack. DataBreaches.net covered the incident and aftermath in a number of articles because of the significance of the breach impacting patient care — including for cancer patients — and the unusual twist the case took when the Conti threat actors…