The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) are releasing this joint CSA to disseminate known Zeppelin ransomware IOCs and TTPs associated with ransomware variants identified through FBI investigations as recently as 21 June 2022. The FBI and CISA encourage organizations to implement the recommendations in the Mitigations section…
Warned of an impending attack, a Nebraska healthcare center was able to avert it
Brian Mastre reports: There were tense moments a month ago at the Butler County Health Care Center in David City, Nebraska. The IT director received a call from the Omaha FBI with a warning that this place was the target of a cyberattack. […] “Exactly when it was going to spread and when they were going…
Update: Hackers issue ‘ransom demands’ to NHS IT supplier: Fears MILLIONS of confidential patient records could be leaked after major cyber attack
Joe Davies reports an update to the ransomware attack on Advanced that impacted the NHS 111 system: Hackers are holding an IT firm that supplies NHS trusts to ransom following a cyber attack last week, according to sources. Health bosses are concerned criminals have access to confidential health records and could leak them if their demands aren’t…
Malaysian payment gateway platform iPay88 suffers data leak, card data may be compromised
Raymond Saw reports: If you typically use contactless payment methods, chances are that you’ve used iPay88 even without realising it. iPay88 is one of Malaysia’s biggest payment gateway platforms, providing point-of-sale solutions for plenty of merchants throughout Malaysia and the region. As such, it’s understandably quite worrying to know then that iPay88 has suffered a cybersecurity…
Lockbit, Hive, and BlackCat attack automotive supplier in triple ransomware attack
Linda Smith, Rajat Wason, and Syed Zaidi of Sophos write: In May 2022, an automotive supplier was hit with three separate ransomware attacks. All three threat actors abused the same misconfiguration – a firewall rule exposing Remote Desktop Protocol (RDP) on a management server – but used different ransomware strains and tactics. The first ransomware…
Newton Falls schools report possible security breach
Staff reports: The school district said it has been made aware of a possible security breach impacting several students’ Social Security numbers and potential tax fraud. District administrators and the schools’ technology department actively are investigating the issue “but at this time, we have no evidence of a security breach through Newton Falls Exempted Village School…