QRS On August 26, healthcare technology services company QRS, Inc. (“QRS”) discovered that an attacker had compromised a patient portal and exfiltrated some files from that client’s server. The compromise had been detected within three days of the attack. The information the threat actor may have accessed or acquired may have included, depending on the…
US Defense Contractor Discloses Data Breach
Dark Reading reports: Electronic Warfare Associates (EWA), a US defense contractor, has confirmed a data breach in which attackers exfiltrated files containing personal information. The breach began with a phishing attack that had “some limited impact” on EWA email accounts, officials report in a notification letter. Their investigation determined an attacker broke into EWA email accounts…
bZx Network Hacked for $55M
Vishal Chawla reports: bZx, a widely-used DeFi protocol, has lost $55 million to an unknown hacker who it claims gained illegitimate access to its private key. It is still not clear how the hackers carried out the attack. Read more on Crypto Briefing although not much is known at the time of this posting.
INTERPOL-led operation takes down prolific cybercrime ring
Interpol has released more details about theJune, 2021 takedown and arrest of people associated with CLOP and other groups. The following is today’s press release: SEOUL, Korea – A 30-month transcontinental investigation and operation has resulted in arrests and Red Notices for suspects believed to be behind a global malware crime network. Two Red Notices,…
Black Shadow hackers leak medical records of 290,000 Israeli patients
The Times of Israel reports: In its second major leak in a day, the Black Shadow hacking group on Tuesday night uploaded what it said was the full database of personal information from Israel’s Machon Mor medical institute, including medical records of some 290,000 patients. The directory reportedly includes information on patients’ blood tests, treatments,…
What happened, Friday edition
It’s often quite difficult to code incidents for analysis purposes. Consider the following notification’s description of what happened, as one example: Mesa, AZ: November 3, 2021 – Baywood Medical Associates, PLC dba Desert Pain Institute (“DPI”), a health care provider specializing in pain management located in Mesa, Arizona, has become aware of a data security incident…