CISA has released a new module in its Cyber Security Evaluation Tool (CSET): the Ransomware Readiness Assessment (RRA). CSET is a desktop software tool that guides network defenders through a step-by-step process to evaluate their cybersecurity practices on their networks. CSET—applicable to both information technology (IT) and industrial control system (ICS) networks—enables users to perform…
IA: Peoples Community Health Clinic notifying patients after discovering compromise of employee email account
Peoples Community Health Clinic in Iowa has been notifying some patients as a result of an employee’s email account being compromised. As explained in their press release*, on March 22, 2021, PCHC became aware of suspicious activity related to an employee’s email account. An investigation revealed that between March 18, 2021 and March 22, 2021,…
Coordinated Action Cuts Off Access To VPN Service Used By Ransomware Groups
This week, law enforcement and judicial authorities in Europe, the US and Canada have seized the web domains and server infrastructure of DoubleVPN. This is a virtual private network (VPN) service which provided a safe haven for cybercriminals to attack their victims. This coordinated takedown, led by the Dutch National Police (Politie), under jurisdiction of the…
Facebook sues four Vietnamese nationals for hijacking accounts
Catalin Cimpanu reports: Social networking giant Facebook has filed two lawsuits today against two suspected criminal groups that abused its advertising platform for their own gains. The first lawsuit was filed against four Vietnamese nationals for hijacking user accounts and the second against a US company for running an e-commerce bait-and-switch scam. Read more on…
UK arm of international charity the Salvation Army hit by ransomware attack
Gareth Corfield reports: Criminals infected the Salvation Army in the UK with ransomware and siphoned the organisation’s data, The Register has learned. A Salvation Army spokesperson confirmed the evangelical Christian church and charity was compromised, and said it alerted regulators in the UK. Read more on The Register.
Russian Hackers Mounted Cyber Attack on German Banks, Bild Says
Patrick Donahue and Jake Rudnitsky report: A hacker group linked to the Russian state known as “Fancy Bear” conducted a cyber attack on critical German infrastructure and the country’s banking system in the past few days, Bild newspaper reported, citing unidentified Western intelligence sources. A spokesman for Germany’s BSI Federal Cyber Security Authority said the agency has…