In February, RansomHub was described as the leading Ransomware-as-a-Service group and as a pervasive threat to critical sectors. Weeks later, Trend Micro analyzed SocGholish’s MaaS framework and its role in deploying RansomHub ransomware. RansomHub was clearly developing and making a significant impact in the ransomware ecosystem. But in the blink of an eye, it seemed,…
Kaiser fires security exec amid disputed allegations involving a police database breach
Jakob Emerson reports on what is a disputed claim of insider-wrongdoing: Kaiser Permanente has terminated its national director of corporate security investigations, Craig Chew, amid allegations he received confidential data from a California criminal database accessed by an Oakland police officer, the Mercury News reported April 6. Mr. Chew, a former police officer, was fired along with…
Florida man known as “King Bob” pleads guilty to charges related to cryptocurrency theft
News4Jax reports: A 20-year-old Palm Coast man linked to a massive cybercriminal gang pleaded guilty in a Jacksonville federal courtroom Friday morning to charges including conspiracy and wire fraud. Noah Urban faced charges in two separate federal cases: charges in Florida that were unsealed in January 2024, and charges in southern California that were announced in…
Unmasking EncryptHub: Help from ChatGPT & OPSEC blunders
KrakenLabs writes: This is the second part of Outpost24’s KrakenLabs investigation into EncryptHub, an up-and-coming cybercriminal who has been gaining popularity in recent months and is heavily expanding and evolving operations at the time of writing. We’ve already published one article explaining EncryptHub’s campaigns and TPPs, infrastructure, infection methods, and targets. This article will follow a different approach. We’ll…
Chinese hacker “Crazyhunter” behind ransomware attack on MacKay Hospital, others: CIB
Huang Li-yun and Matthew Mazzetta report that the hacker known as “Crazyhunter” on Breach Forums has been identified and prosecutors are seeking an arrest warrant for him: The Criminal Investigation Bureau (CIB) on Wednesday said it had identified the suspect behind the hacking and attempted extortion of MacKay Memorial Hospital as a 20-year-old Chinese man,…
Lawsuit: Pharmacist used spyware on UMMS computers to watch women, gain personal information
For your reminder of the insider threat for this week, Tolly Taylor reports: A Maryland pharmacist is accused of installing spyware on 400 computers over eight years to watch women at the hospital or in their homes, a lawsuit alleges. Six women filed a civil lawsuit on Thursday against the University of Maryland Medical System,…