In January 2022, DataBreaches reported that New York announced a $600,000 agreement with EyeMed that resolved a 2020 phishing incident that compromised the personal information of approximately 2.1 million consumers nationwide, including 98,632 in New York. But that was not the end of enforcement action and monetary penalties for EyeMed. Now the state’s Department of…
Category: Phishing
Phishing incident may have exposed Seton patient names, clinical information
Jack Dowling reports: A vendor associated with Seton Medical Center in Harker Heights was recently the victim of a phishing incident, according to a news release from the hospital late Friday afternoon. According to the center, an unauthorized agent accessed the email accounts of two of the vendor’s employees. Read more at KDH News.
34 Deputies call on France’s Minister of Justice to Request Extradition of Sebastien Raoult to France
Although it has been out of the news cycle in the U.S., counsel for suspected ShinyHunters member Sebastien Raoult continues to urge France to seek his client’s extradition to France from Morocco. Raoult has been sitting in a Moroccan jail since May 31 when he was picked up on a red notice from Interpol at…
Revolut hit by ‘phishing’ cyberattack
Ben Martin reports: A cyberattack on Revolut has compromised the personal details of more than 50,000 people. The breach at the app-based payments company occurred last Sunday night after a Revolut employee was caught out by a phishing scam. The attack has affected 50,144 people and involved an unauthorised third-party accessing some of their details,…
Cyber Criminals Targeting Healthcare Payment Processors, Costing Victims Millions in Losses
IC3.gov PIN 20220914-001 14 September 2022 TLP: WHITE Summary The FBI has received multiple reports of cyber criminals increasingly targeting healthcare payment processors to redirect victim payments. In each of these reports, unknown cyber criminals used employees’ publicly-available Personally Identifiable Information (PII) and social engineering techniques to impersonate victims and obtain access to files, healthcare…
EvilProxy Phishing-As-A-Service With MFA Bypass Emerged In Dark Web
Seen on Resecurity’s blog: a reminder that our current defenses fall rapidly as nimble criminals find a work-around and that some developments enable second-tier or less sophisticated attackers to punch above their weight: Following the recent Twilio hack leading to the leakage of 2FA (OTP) codes, cybercriminals continue to upgrade their attack arsenal to orchestrate…