Sonner Kehrt has an article on CTI that begins: It was early February when Ohad Zaidenberg first started noticing malicious emails and files disguised as information about Covid. He’s a cyber intelligence researcher based in Israel, and they were the sort of schemes he encountered all the time—benign-looking messages that trick people into giving someone network…
Category: Of Note
Major U.S. hospital system hit by ransomware
Kevin Collier reports: A major hospital chain has been hit by what appears to be one of the largest medical cyberattacks in United States history. Computer systems for Universal Health Services, which has more than 400 locations, primarily in the U.S., began to fail over the weekend, and some hospitals have had to resort to filing…
Hackers Have Infiltrated Many of Washington State’s Agencies
Kartikay Mehrotra and Dina Bass report: Hackers have launched a sprawling, multifaceted cyber-attack against the state of Washington, according to two people familiar with the matter. The attack infested many of the state’s agencies with sophisticated malware, including one type known as Trickbot, according to the two people, who requested anonymity because they aren’t authorized…
Suspicious logins reported after ransomware attack on US govt contractor
Catalin Cimpanu reports: Customers of Tyler Technologies, one of the biggest software providers for the US state and federal government, are reporting finding suspicious logins and previously unseen remote access tools (RATs) on their networks and servers. The reports come days after Tyler Technologies admitted last week to suffering a ransomware attack. Read more on…
Health Insurer Pays $6.85 Million to Settle Data Breach Affecting Over 10.4 Million People
HHS has announced another big settlement and corrective action plan. This one stems from a hack of Premera Blue Cross (PBC) in 2014 that went undetected until March of 2015. DataBreaches.net had covered this incident at the time and the follow-ups that included a class action lawsuit that settled, a settlement with state attorneys general,…
The High Cost of Reporting a Non-Reportable Data Breach
Mark Rasch raises an important issue — the risks of reporting a breach that you may not need to report. Using the Blackbaud incident as his starting point, he writes: In May, cloud provider Blackbaud was the victim of a ransomware attack designed to lock it out of accessing its own data and servers. The…