Change Healthcare Finally Admits It Paid Ransomware Hackers—and Still Faces a Patient Data Leak post, april 22, 2024april 26, 2024 More than two months after the start of a ransomware debacle whose impact ranks among the worst in the history of cybersecurity, the medical firm Change Healthcare finally confirmed what cybercriminals, security researchers, and Bitcoin’s blockchain had already made all too clear: that it did indeed pay a ransom to the… Continue Reading
Unearthing APT44: Russia’s Notorious Cyber Sabotage Unit Sandworm post, april 17, 2024april 26, 2024 With Russia’s full-scale invasion in its third year, Sandworm (aka FROZENBARENTS) remains a formidable threat to Ukraine. The group’s operations in support of Moscow’s war aims have proven tactically and operationally adaptable, and as of today, appear to be better integrated with the activities of Russia’s conventional forces than in… Continue Reading
Russian hackers may have targeted Ukrainian telecoms with upgrade ‘AcidPour’ malware post, maart 22, 2024april 26, 2024 The data wiping malware called AcidPour may have been deployed in attacks targeting four telecom providers in Ukraine, new findings from SentinelOne show.The cybersecurity firm also confirmed connections between the malware and AcidRain, tying it to threat activity clusters associated with Russian military intelligence.“AcidPour’s expanded capabilities would enable it to better Continue Reading
Federal warning highlights cyber vulnerability of US water systems post, maart 20, 2024april 26, 2024 The White House urged operators of water and wastewater systems to review and beef up their security controls against attacks by Iran- and China-based groups. Continue Reading
APT28 hacker group targeting Europe, Americas, Asia in widespread phishing scheme post, maart 18, 2024april 26, 2024 The Russia-linked threat actor known as APT28 has been linked to multiple ongoing phishing campaigns that employ lure documents imitating government and non-governmental organizations (NGOs) in Europe, the South Caucasus, Central Asia, and North and South America.“The uncovered lures include a mixture of internal and publicly available documents, as well as possible actor-generated Continue Reading
Microsoft confirms Russian spies stole source code, accessed internal systems post, maart 8, 2024april 26, 2024 Still ‘no evidence’ of any compromised customer-facing systems, we’re told Microsoft has now confirmed that the Russian cyberspies who broke into its executives’ email accounts stole source code and gained access to internal systems. The Redmond giant also characterized the intrusion as “ongoing.” Continue Reading
Possible China link to Change healthcare ransomware attack post, maart 7, 2024april 26, 2024 Alleged crim bought SmartScreen Killer, Cobalt Strike on dark-web markets A criminal claiming to be an ALPHV/BlackCat affiliate — the gang responsible for the widely disruptive Change Healthcare ransomware infection last month — may have ties to Chinese government-backed cybercrime syndicates.… Continue Reading
China-linked cyber spies blend water hole, supply chain attacks post, maart 7, 2024april 26, 2024 The nation-state group compromised the website of a Tibetan festival and a software application to target user systems in Asia. Continue Reading
BlackCat ransomware group implodes after apparent $22M payment by Change Healthcare post, maart 6, 2024april 26, 2024 There are indications that U.S. healthcare giant Change Healthcare has made a $22 million extortion payment to the infamous BlackCat ransomware group (a.k.a. “ALPHV“) as the company struggles to bring services back online amid a cyberattack that has disrupted prescription drug services nationwide for weeks. However, the cybercriminal who claims to have given BlackCat… Continue Reading
Uncle Sam intervenes as Change Healthcare ransomware fiasco creates mayhem post, maart 6, 2024april 26, 2024 The US government has stepped in to help hospitals and other healthcare providers affected by the Change Healthcare ransomware infection, offering more relaxed Medicare rules and urging advanced funding to providers.… Continue Reading