Release Date: March 12, 2025 Alert Code: AA25-071A Summary Note: This joint Cybersecurity Advisory is part of an ongoing #StopRansomware effort to publish advisories for network defenders detailing various ransomware variants and ransomware threat actors. These #StopRansomware advisories include recently and historically observed tactics, techniques, and procedures (TTPs) and indicators of compromise (IOCs) to help organizations protect…
Takeaways from our investigation on AI-powered school surveillance
Sharon Lurye of The Associated Press and Claire Bryan of The Seattle Times report: Thousands of American schools are turning to AI-powered surveillance technology for 24/7 monitoring of student accounts and school-issued devices like laptops and tablets. The goal is to keep children safe, especially amid a mental health crisis and the threat of school shootings. Machine-learning algorithms detect potential indicators of problems…
Pinehurst Radiology Associates remains closed more than 1 month after cyberattack
Marty Stempniak reports: An East Coast imaging group remains closed more than one month after a cyberattack, according to reports from local media. Pinehurst Radiology Associates recently gave notice of the incident, launching an investigation amid suspicious activity on its network. Located in the Sandhills of North Carolina’s Moore County, the practice hired legal counsel…
Swiss critical sector faces new 24-hour cyberattack reporting rule
Bill Toulas reports: Switzerland’s National Cybersecurity Centre (NCSC) has announced a new reporting obligation for critical infrastructure organizations in the country, requiring them to report cyberattacks to the agency within 24 hours of their discovery. According to the NCSC announcement, this new requirement is introduced as a response to the increasing number of cybersecurity incidents…
Computers containing thousands of patients’ records stolen from Belfast hospital
Deborah McAleese reports: Twenty-eight computers containing the records of thousands of patients have been stolen from a Belfast Hospital, UTV can reveal. The computers were being used to train staff on the new encompass system, a digital healthcare record that is being rolled out across all health trusts. Belfast Health Trust said the missing appliances…
Center for Digestive Health notifies patients of April 2024 cyberattack
In May, 2024, the threat actors known as BianLian added the Center for Digestive Health in Florida to their dark web leak site. In June, they leaked what they claimed was 2.2 TB of files that they described as: A physical and medical history examination. Accounting, budget, financial data. Contract data and NDA’s. Accidents. Files…