The cost of safeguarding America’s schools from cybercriminals could run as high as $5 billion. boonchai wedmakawand via Getty Images Nir Kshetri, University of North Carolina – Greensboro In August 2023, the White House announced a plan to bolster cybersecurity in K-12 schools – and with good reason. Between 2018 and mid-September 2023, there were…
Neurology Center of Nevada allegedly attacked by Qlin
Cardiovascular Consultants in Arizona is not the only U.S. medical entity the ransomware gang known as Qlin has hit. On December 4, Qlin added the Neurology Center of Nevada (NCN) to their leak site. They also provided screenshots as proof of claims. Some of those screenshots revealed personal or protected health information. In addition to…
Former employee of Massachusetts high school pleads guilty in cyberattack
Updating a recent post, Russ Reed reports: A former information technology manager at a Massachusetts high school pleaded guilty Wednesday to targeting the school’s network during a cyberattack earlier this year. Conor LaHiff, 30, of Ayer, pleaded guilty in Boston’s federal court to one count of unauthorized damage to protected computers, according to the U.S….
Hospital systems slowly coming back online after October cyberattack
Paul Pedro reports: The five regional hospitals affected by a ransomware cyberattack are confirming that charting systems started coming back online last week and have continued this week. “As we continue to bring systems online, we are closely monitoring system integrity during network restoration at each institution,” hospital officials said in a statement on Thursday morning. “This…
Ee: 10,000 people’s data stolen in genetic testing company Asper Biogene leak
ERR reports: Personal and health data belonging to approximately 10,000 people has been illegally downloaded from the Tartu-based genetic testing company Asper Biogene’s database, the State Prosecutor’s Office said on Thursday. Those affected are in the process of being notified. A criminal investigation has been launched by the Southern Prefectural Criminal Bureau which is in…
Opening a Can of Whoop Ads: Detecting and Disrupting a Malvertising Campaign Distributing Backdoors
Ryan Tomcik, Adrian McCabe, Rufus Brown, and Geoff Ackerman write: Earlier this year, Mandiant’s Managed Defense threat hunting team identified an UNC2975 malicious advertising (“malvertising”) campaign promoting malicious websites themed around unclaimed funds. This campaign dates back to at least June 19, 2023, and has abused search engine traffic and leveraged malicious advertisements to affect…