Akshaya Asokan reports: “Molerats,” an Arabic-speaking advanced persistent threat group that has been targeting victims mainly in the Middle East for several years, is now abusing Facebook accounts, as well as other cloud-based platforms, to deploy previously undocumented malware as part of an ongoing espionage campaign, according to security firm Cybereason. The hacking group, which is…
Hackers sell 4000 .nz email addresses, passwords stolen from popular app
1News reports: A popular PDF app which last month had millions of emails and passwords leaked in a significant data breach has today revealed a further breach than previously reported. On November 20, a person claimed to be in possession of 2.6 million email addresses and hashed passwords from Nitro PDF, an application which allows…
Former Elgin Mental Health Center Employee Charged With Identity Theft
CBS Chicago reports: Illinois State Police announced Wednesday that they have arrested a former Elgin Mental Health Center employee on identity theft charges. Kayla Brown, 25, of Country Club Hills, has been charged with a total of four felony counts of identity theft. She is an employee of the Illinois Department of Human Services, which…
Thai securities trading firm goes offline after cyberattack
It seems that yet another group of threat actors are trying the double-extortion method, replete with trying to get media coverage. “ALTDOS,” as they call themselves, contacted a number of news outlets in Thailand and online news sites to announce that they had attacked CGSEC on December 4. “A large Thailand SET public listed company…
Cyberattack cost UVM Medical Center $1.5 million a day
Kate Jickling reports: The October cyberattack cost the University of Vermont Medical Center $1.5 million a day in increased expenses and lost revenue, hospital president Stephen Leffler said Tuesday. That “back of the envelope” calculation doesn’t include the cost of getting the system back up and running, he told reporters. Forty-two days have elapsed since…
Individual Pleads Guilty to Participating in Internet-of-Things Cyberattack in 2016
There’s an update to a case previously reported on this site in 2016. From the U.S. Department of Justice: An individual, formerly a juvenile, pleaded guilty to committing acts of federal juvenile delinquency in relation to a cyberattack that caused massive disruption to the Internet in October 2016. Acting Assistant Attorney General Brian C. Rabbitt…