John Leonard reports: NCSC, the cyber security arm of GCHQ, has issued an advisory warning about the targeting of media and political organisations by hackers from Russia and Iran. The groups mentioned, SEABORGIUM from Russia and TA453 (alias APT42 and Charming Kitten) from Iran, are believed to be associated with the governments of those countries….
Category: Phishing
Australian man given two-year jail sentence for $69K phishing scams
Eileen Yu reports: An Australian man has been sentenced to jail for more than two years over an SMS phishing scam, during which he stole AU$100,000 ($69,751) and targeted 450 victims. The Sydney Local Court found the man guilty of various cybercrime offences, including obtaining and supplying data with intent to commit a computer offence….
NHS Is The Most Phished UK Government Organization
Cyber Security Intelligence reports: Cyber security experts have recently revealed the top six government impersonation scams they have removed from the Internet in 2022 as they urged the public to remain vigilant to cyber crime in 2023. The scams unveiled by the National Cyber Security Centre (NCSC), part of GCHQ, included phishing emails and messages from cyber criminals…
WA: Therapist notifies clients after tricked by a hacker
Some breaches may be more embarrassing to admit to than others. Kudos to this therapist for forthrightly informing the Washington state attorney general what happened: I am writing to advise you of a computer data breach, which occurred from December 2 to December 4, 2022. I was contacted by a person representing himself as an…
Lawsuits come, lawsuits go (settle), Friday edition
Three more recent announcements of lawsuit settlements involving healthcare entities. Two of the following involve ransomware and Massachusetts entities; the third is a phishing attack on an Arkansas entity. North Shore Pain Management and Resolve I.T. North Shore Pain Management has set aside $200,000 to settle a class action lawsuit that claimed the company and…
Disneyland Malware Team: It’s a Puny World After All
Brian Krebs reports: A financial cybercrime group calling itself the Disneyland Team has been making liberal use of visually confusing phishing domains that spoof popular bank brands using Punycode, an Internet standard that allows web browsers to render domain names with non-Latin alphabets like Cyrillic. The Disneyland Team uses common misspellings for top bank brands in its domains….