Ionut Ilascu reports: Researchers discovered 120,000 infected systems that contained credentials for cybercrime forums. Many of the computers belong to hackers, the researchers say. Analyzing the data, threat researchers found that the passwords used for logging into hacking forums were generally stronger than those for government websites. After pouring through 100 cybercrime forums, researchers at…
Colorado Department of Health Care Policy & Financing reports more than 4 million affected by MOVEit breach
As I tooted earlier this morning on Infosec.Exchange: One of the MOVEit victims was the Colorado Department of Health Care Policy & Financing, which was notified by IBM of the data breach. According to their notification, the information types included full name, Social Security number, Medicaid ID number, Medicare ID number, date of birth, home…
NYS Comptroller Audit: Cyber Incident Response Team (Follow-Up)
Issued Date: July 20, 2023 Agency/Authority: Homeland Security and Emergency Services, Division of Objective To assess the extent of implementation of the two recommendations included in our initial audit report, Cyber Incident Response Team (Report 2020-S-58). About the Program Cybercrimes continue to rise. According to the Federal Bureau of Investigation (FBI), complaints of phishing and similar cyberattacks often…
Monti Ransomware Unleashes a New Encryptor for Linux
Nathaniel Morales and Joshua Paul Ignacio report: … Following a two-month break from exposing victims on their leak site, the Monti ransomware group has resumed its malicious activities, this time targeting organizations within the legal and government sectors. Alongside this, a fresh Linux-based variant of Monti (Ransom.Linux.MONTI.THGOCBC) has emerged, displaying significant deviations from its other…
10 people, including 16-year-old youth arrested for suspected involvement in malware scams
Farah Daley reports: In an island-wide anti-scam operation, the Commercial Affairs Department (CAD) and Police Intelligence Department (PID) arrested nine men, aged between 18 to 43, and a 16-year-old youth for their suspected involvement in a recent spate of banking-related malware scam cases. Another three men and three women, aged 17 to 60, are assisting…
Everything old is new again? Medusa attempts to up the pressure on a victim with a DDoS attack
Over on Suspect File, Marco A. De Felice has an exclusive on an attack by Medusa on Levare International, formerly known as Borets International. Levare, headquartered in Dubai, is a manufacturer of artificial lifts and submersible pumps used by the oil and gas industry. Its U.S. headquarters is in Houston, Texas. Suspect File reports that…