Nathaniel Morales and Joshua Paul Ignacio report: … Following a two-month break from exposing victims on their leak site, the Monti ransomware group has resumed its malicious activities, this time targeting organizations within the legal and government sectors. Alongside this, a fresh Linux-based variant of Monti (Ransom.Linux.MONTI.THGOCBC) has emerged, displaying significant deviations from its other…
10 people, including 16-year-old youth arrested for suspected involvement in malware scams
Farah Daley reports: In an island-wide anti-scam operation, the Commercial Affairs Department (CAD) and Police Intelligence Department (PID) arrested nine men, aged between 18 to 43, and a 16-year-old youth for their suspected involvement in a recent spate of banking-related malware scam cases. Another three men and three women, aged 17 to 60, are assisting…
Everything old is new again? Medusa attempts to up the pressure on a victim with a DDoS attack
Over on Suspect File, Marco A. De Felice has an exclusive on an attack by Medusa on Levare International, formerly known as Borets International. Levare, headquartered in Dubai, is a manufacturer of artificial lifts and submersible pumps used by the oil and gas industry. Its U.S. headquarters is in Houston, Texas. Suspect File reports that…
One year later, Tift Regional Medical Center notifies patients of Hive attack
In September 2022, DataBreaches broke the story of how Hive had attacked Tift Regional Medical Center in Georgia between July and August. The attack did not involve encryption of systems but Hive claimed to have exfiltrated about 1 TB of data, including files with protected health information. On October 14, Tift notified HHS of an…
IN: Cummins Behavioral Health Systems discovers cyberattack when it finds ransom note
Sometime between Feb. 2 and March 9 of this year, Cummins Behavioral Health Systems (CBHS) in Indiana became a victim of a cyberattack. CBHS is a private not-for-profit organization providing behavioral health services in Boone, Hendricks, Marion, Montgomery, Putnam, and surrounding counties in Central and West Central Indiana. It provides care to persons of all…
EvilProxy Cyberattack Flood Targets Execs via Microsoft 365
Elizabeth Montalbano reports: Attackers have unleashed an EvilProxy phishing campaign to target thousands of Microsoft 365 user accounts worldwide, sending a flood of 120,000 phishing emails to more than 100 organizations across the globe in the three-month period between March and June alone. The goal? To take over C-suite and other executive accounts, in order to…