Back in January, Sodinokibi (REvil) threat actors added Preferred Home Care of New York to their dark web leak site. At the time, the threat actors did what they usually do — they posted a few screencaps as proof of access. The screencaps showed directories of folders and images of identity cards of people working…
Meanwhile, over in Germany…
Some cybercrime reports out of Germany in the past 48 hours (translated): The city administration of Ebeleben was the victim of a massive hacker attack on Wednesday. All servers are out of order, it says from the town hall. For this reason, the city administration will remain closed until Tuesday, March 16, inclusive. Read more…
Hackers attack City of Covington computer systems
It looks like the City of Covington, Louisiana was hit with a ransomware attack. Radio.com has the report. The city is using Facebook to post updates. h/t, @Chum1ng0
Former Roswell Park nurse pleads guilty to tampering with a consumer product
Articles on breaches involving protected health information (PHI) often raise the specter of what could happen if a patient’s records were misused and the patient’s healthcare suffered as a result. Here’s a case where it reportedly happened. This case also raises some questions about access controls and the value of audits and follow-up on audits….
Criminals arrested after trusting encrypted chat app cracked by police
Graham Cluley reports: Police in the Netherlands and Belgium have made hundreds of raids, and arrested at least 80 people, after cracking into an encrypted phone network used by organised criminals. In a press release, Europol said that crime-fighting authorities in France, Belgium and the Netherlands had not only arrested a large number of suspected criminals,…
Ransomware now attacks Microsoft Exchange servers with ProxyLogon exploits
Lawrence Abrams reports: Threat actors are now installing a new ransomware called ‘DEARCRY’ after hacking into Microsoft Exchange servers using the recently disclosed ProxyLogon vulnerabilities. Since Microsoft revealed earlier this month that threat actors were compromising Microsoft Exchange servers using new zero-day ProxyLogon vulnerabilities, a significant concern has been when threat actors would use it to…