Cybercrime, Healthcare, Information Security and Phishing

The dangers of “connected” healthcare: predictions for 2022

SecureList

NOVEMBER 23, 2021

For a second consecutive year, the time for Kaspersky to make its predictions for the healthcare sector comes amid the global COVID-19 pandemic. A 2021 report by Constella Intelligence found that the number of personal data leaks in healthcare grew by half when compared to 2019. Several factors contributed to that.

Healthcare

Healthcare Ransomware Cybercrime Scams

Healthcare organizations faced a 45% increase in attacks since November

Security Affairs

JANUARY 5, 2021

According to a new report published by Check Point, organizations in the healthcare industry have faced a 45% increase in attacks since November. Check Point researchers reported a surge in the number of attacks against organizations in the healthcare industry , +45% since November. SecurityAffairs – hacking, healthcare industry).

Healthcare

Healthcare Ransomware DDOS Cyber threats

US HHS warns healthcare orgs of Royal Ransomware attacks

Security Affairs

DECEMBER 10, 2022

The US Department of Health and Human Services (HHS) warns healthcare organizations of Royal ransomware attacks. The Health and Human Services (HHS) is aware of attacks against the Healthcare and Public Healthcare (HPH) sector. It has demanded ransoms up to millions of dollars. ” reads the report published by HHS.

Healthcare

Healthcare Ransomware Encryption Malware

Webinars

Human-Centered Cyber Security Training: Driving Real Impact on Security Culture

MORE WEBINARS

As of May 2024, Black Basta ransomware affiliates hacked over 500 organizations worldwide

Security Affairs

MAY 12, 2024

Black Basta has targeted at least 12 critical infrastructure sectors, including Healthcare and Public Health. The alert provides Tactics, Techniques, and Procedures (TTPs) and Indicators of Compromise (IOCs) obtained from law enforcement investigations and reports from third-party security firms. . ” reads the CSA.

Ransomware

Ransomware Hacking Healthcare Retail

Threat spotlight: Conti, the ransomware used in the HSE healthcare attack

Malwarebytes

MAY 28, 2021

On the 14th of May, the Health Service Executive (HSE) , Ireland’s publicly funded healthcare system, fell victim to a Conti ransomware attack, forcing the organization to shut down more than 80,000 affected endpoints and plunging them back to the age of pen and paper. Focus on cyber security awareness and training.

Healthcare

Healthcare Ransomware Encryption Passwords

Five Canadian Hospitals impacted by a ransomware attack on TransForm provider

Security Affairs

NOVEMBER 8, 2023

The impacted hospitals are Bluewater Health , Chatham-Kent Health Alliance , Erie Shores HealthCare , Hôtel-Dieu Grace Healthcare , and Windsor Regional Hospital. The attackers also stole a “limited set” data from Erie Shoes HealthCare including 352 current and past employee social insurance numbers (SIN).

Ransomware

Ransomware Healthcare VPN Insurance

Daixin Team group claimed the hack of North Texas Municipal Water District

Security Affairs

NOVEMBER 28, 2023

In October 2022, CISA, the FBI, and the Department of Health and Human Services (HHS) warned that the Daixin Team cybercrime group is actively targeting U.S. businesses, mainly in the Healthcare and Public Health (HPH) Sector, with ransomware operations. The threat actors obtained the VPN credentials through phishing attacks.

Hacking

Hacking VPN Ransomware Cybercrime

Internationa police operation led to the arrest of the SilverTerrier gang leader

Security Affairs

MAY 25, 2022

The Nigeria Police Force has arrested the suspected leader of the SilverTerrier cybercrime group as a result of an international operation. The Nigeria Police Force has arrested the suspected leader of the SilverTerrier cybercrime gang (aka TMT ) after a year-long investigation codenamed “Operation Delilah.”

Cybercrime

Cybercrime Healthcare Cybersecurity Phishing

Cybersecurity Management Lessons from Healthcare Woes

eSecurity Planet

MAY 30, 2024

Ransomware attacks and data breaches make headlines when they shut down huge connected healthcare providers such as Ascension Healthcare or Change Healthcare. IT should never be the top expense for a healthcare organization. The costs, affected patients, and consequences continue to be tallied.

Healthcare

Healthcare Cybersecurity Backups Ransomware

Reading INTERPOL the African Cyberthreat Assessment Report 2021

Security Affairs

OCTOBER 30, 2021

INTERPOL published the African Cyberthreat Assessment Report 2021, a report that analyzes evolution of cybercrime in Africa. A new report published by INTERPOL, titled the African Cyberthreat Assessment Report 2021 , sheds the light on cybercrime in Africa.

Cybercrime

Cybercrime Scams DDOS Banking

Carbanak malware returned in ransomware attacks

Security Affairs

DECEMBER 26, 2023

The threat actors used sophisticated phishing techniques against bank employees. The most targeted sectors are Industrials (33%), Consumer Cyclicals (18%), and Healthcare (11%). The Carbanak gang was first discovered by Kaspersky Lab in 2015, the group has stolen at least $300 million from 100 financial institutions.

Malware

Malware Ransomware Banking Healthcare

Security Affairs newsletter Round 462 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

MARCH 10, 2024

Judge ordered NSO Group to hand over the Pegasus spyware code to WhatsApp Cybercrime BlackCat Ransomware Affiliate TTPs American Express credit cards EXPOSED in third-party vendor data breach – account numbers and names among details accessed in hack LockBit 3.0’S

Spyware

Spyware Data breaches Hacking Ransomware

Security Affairs newsletter Round 373 by Pierluigi Paganini

Security Affairs

JULY 10, 2022

Upgrade it now! Unfaithful HackerOne employee steals bug reports to claim additional bounties Threat Report Portugal: Q2 2022 CISA orders federal agencies to patch CVE-2022-26925 by July 22 Tens of Jenkins plugins are affected by zero-day vulnerabilities Microsoft: Raspberry Robin worm already infected hundreds of networks.

Cybercrime

Cybercrime Data breaches Ransomware Healthcare

Security Affairs newsletter Round 452 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

DECEMBER 31, 2023

INC RANSOM ransomware gang claims to have breached Xerox Corp Spotify music converter TuneFab puts users at risk Cyber attacks hit the Assembly of the Republic of Albania and telecom company One Albania Russia-linked APT28 used new malware in a recent phishing campaign Clash of Clans gamers at risk while using third-party app New Version of Meduza (..)

Artificial Intelligence

Artificial Intelligence Cyber Attacks Malware Ransomware

COVID-19 Has United Cybersecurity Experts, But Will That Unity Survive the Pandemic?

Krebs on Security

APRIL 15, 2020

The Coronavirus has prompted thousands of information security professionals to volunteer their skills in upstart collaborative efforts aimed at frustrating cybercriminals who are seeking to exploit the crisis for financial gain. “I’ve never seen this volume of phishing,” Rogers told Reuters. “I

Cybersecurity

Cybersecurity Cyber threats Government Phishing

Daixin Team targets health organizations with ransomware, US agencies warn

Security Affairs

OCTOBER 22, 2022

US government agencies warned that the Daixin Team cybercrime group is actively targeting the U.S. Healthcare and Public Health sector with ransomware. CISA, the FBI, and the Department of Health and Human Services (HHS) warned that the Daixin Team cybercrime group is actively targeting U.S.

Ransomware

Ransomware VPN Cybercrime Accountability

Telehealth: A New Frontier in Medicine—and Security

SecureList

FEBRUARY 1, 2022

the number of victims of healthcare data leaks grew by more than 1.5 Let’s see if there are any informational security issues with these wearables. It’s also important to keep in mind that certain wearables, like Apple Watch, don’t just track healthcare data, but also location and movements.

Phishing

Phishing Healthcare IoT Authentication

FIN11 gang started deploying ransomware to monetize its operations

Security Affairs

OCTOBER 18, 2020

Since August, FIN11 started targeting organizations in many industries, including defense, energy, finance, healthcare, legal, pharmaceutical, telecommunications, technology, and transportation. Researchers from FireEye’s Mandiant observed FIN11 hackers using spear-phishing messages distributing a malware downloader dubbed FRIENDSPEAK.

Ransomware

Ransomware Malware Telecommunications Advertising

FBI and CISA warn of attacks by Rhysida ransomware gang

Security Affairs

NOVEMBER 15, 2023

The ransomware gang hit organizations in multiple industries, including the education, healthcare, manufacturing, information technology, and government sectors. According to the advisory, the threat actors have been observed exploiting Zerologon ( CVE-2020-1472 ) in Microsoft’s Netlogon Remote Protocol in phishing attempts.

Ransomware

Ransomware Manufacturing Healthcare Education

The U.S. CISA and FBI warn of Royal ransomware operation

Security Affairs

MARCH 3, 2023

According to government experts, the Royal ransomware attacks targeted numerous critical infrastructure sectors including, manufacturing, communications, healthcare and public healthcare (HPH), and education. ” reads the alert. The malware changes the extension of the encrypted files to ‘.royal’. ” continues the alert.

Ransomware

Ransomware Healthcare Antivirus Encryption

Report Reveals Top Cyber Threats, Trends of 2023 First Half

SecureWorld News

JUNE 13, 2023

Critical Start today released its biannual Cyber Intelligence Report, featuring the top threats observed in the first half of 2023 and emerging cybersecurity trends impacting the healthcare, financial services, and state and local government industries.

Cyber threats

Cyber threats Malware Phishing Penetration Testing

Microsoft aims at stopping cybercriminals from using cracked copies of Cobalt Strike

Security Affairs

APRIL 7, 2023

Microsoft observed more than 68 ransomware attacks, involving the use of cracked copies of Cobalt Strike, against healthcare organizations in more than 19 countries around the world. .” Example of an attack flow by threat actor DEV-0243. Our action is therefore not one and done.” ” concludes the report.

Penetration Testing

Penetration Testing Ransomware Malware Hacking

Security Affairs newsletter Round 402 by Pierluigi Paganini

Security Affairs

JANUARY 15, 2023

Most internet-exposed Cacti servers exposed to hacking French CNIL fined Tiktok $5.4 Most internet-exposed Cacti servers exposed to hacking French CNIL fined Tiktok $5.4

Small Business

Small Business Password Management VPN Healthcare

Coronavirus-themed attacks April 12 – April 18, 2020

Security Affairs

APRIL 19, 2020

April 14 – Crooks target Healthcare facilities involved in Coronavirus containment with Ransomware. PaloAlto Networks experts warn of malicious Coronavirus themed phishing campaigns targeting government and medical organizations. April 17 – Gmail blocked 18 Million phishing and malware emails using COVID-19 lures in a week.

Scams

Scams Malware Phishing Surveillance

Cuba Ransomware received over $60M in Ransom payments as of August 2022

Security Affairs

DECEMBER 2, 2022

entities Financial Services, Government Facilities, Healthcare and Public Health, Critical Manufacturing, and Information Technology. .” Since December 2021 Cuba operators are continuing to target U.S.

Ransomware

Ransomware Financial Services Manufacturing Healthcare

Cuba ransomware gang hacked 49 US critical infrastructure organizations

Security Affairs

DECEMBER 4, 2021

. “The FBI has identified, as of early November 2021 that Cuba ransomware actors have compromised at least 49 entities in five critical infrastructure sectors, including but not limited to the financial, government, healthcare, manufacturing, and information technology sectors.”

Ransomware

Ransomware Hacking Malware Encryption

TrickGate, a packer used by malware to evade detection since 2016

Security Affairs

JANUARY 31, 2023

The attack chain observed by the experts can vary significantly, but in most cases, threat actors used phishing messages with malicious attachments or malicious links. The TrickGate packer was primarily used in attacks aimed at the manufacturing sector, and other attacks aimed at the education, healthcare, government, and finance industries.

Malware

Malware Antivirus Manufacturing Healthcare

2020 Was a Privacy Wake-up Call: Don't Go Back to Sleep in 2021!

SecureWorld News

JANUARY 28, 2021

2020 was a wake-up call for more than healthcare pandemic preparedness. It also exposed some huge security and privacy vulnerabilities, which many cybercrooks have exploited thousands of times throughout 2020 for remote workers. Training must be more frequent and go beyond covering phishing and passwords. 15-20 minutes).

IoT

IoT Phishing Mobile Passwords

Colorado HCPF Department notifies 4 million individuals after IBM MOVEit breach

Security Affairs

AUGUST 14, 2023

Threat actors can exploit this data to carry out a broad range of fraudulent activities, from phishing attacks to identity theft. HCPF’s primary focus is on providing access to affordable and quality healthcare services for eligible individuals and families. state of Colorado.

Identity Theft

Identity Theft Data breaches Ransomware Education

Security Affairs newsletter Round 340

Security Affairs

NOVEMBER 14, 2021

Hundreds of thousands of fake warnings of cyberattacks sent from a hacked FBI email server GravityRAT returns disguised as an end-to-end encrypted chat app Intel and AMD address high severity vulnerabilities in products and drivers New evolving Abcbot DDoS botnet targets Linux systems Retail giant Costco discloses data breach, payment card data exposed (..)

Spyware

Spyware Data breaches Ransomware Retail

CISA, FBI shared a joint advisory to warn of Zeppelin ransomware attacks

Security Affairs

AUGUST 13, 2022

The ransomware was involved in attacks aimed at technology and healthcare, defense contractors, educational institutions, manufacturers, companies across Europe, the United States, and Canada. Zeppelin actors request ransom payments in Bitcoin, they range from several thousand dollars to over a million dollars.

Ransomware

Ransomware Encryption Firmware Backups

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

The Last Watchdog

JUNE 21, 2020

The logic of the raid mainly comes down to using unsecured RDP ports or spear-phishing to infiltrate networks and gain a foothold in them. Local governments, small and medium-sized businesses, large international corporations, healthcare facilities, and educational institutions are the common targets. pharma giant ExecuPharm.

Ransomware

Ransomware Hacking Encryption Penetration Testing

Wannacry, the hybrid malware that brought the world to its knees

Security Affairs

OCTOBER 31, 2022

The spread of this ransomware was considered to be the worst cyber attack in terms of contamination rate and scope, putting public offices and companies (especially healthcare facilities) out of operation. Only the registration of this domain subsequently created the condition (kill swich) for the malware to stop spreading.

Malware

Malware Computers and Electronics Encryption Ransomware

2.6 billion records exposed in 2,308 disclosed data breaches in H1

Security Affairs

AUGUST 18, 2018

The most affected sector is the business one (40%), followed by healthcare (8.3%), government (8.2%), and education (4.5%). The most popular attack method to harvest credentials remains phishing , stolen credentials are used to gain access to systems or services in successive attacks. “It’s not easy to characterize 2.6

Data breaches

Data breaches Social Engineering Cyber threats Phishing

FBI warns of PYSA Ransomware attacks against Education Institutions in US and UK

Security Affairs

MARCH 17, 2021

.” Since March 2020, the PYSA ransomware was involved in attacks against US and foreign government entities, educational institutions, private companies, and the healthcare sector.

Education

Education Ransomware Encryption Antivirus

U.S. Department of Health warns of attacks against IT help desks

Security Affairs

APRIL 8, 2024

Department of Health and Human Services (HHS) warns of attacks against IT help desks across the Healthcare and Public Health (HPH) sector. Department of Health and Human Services (HHS) reported that threat actors are carrying out attacks against IT help desks across the Healthcare and Public Health (HPH) sector.

Social Engineering

Social Engineering Healthcare Engineering Accountability

Protecting Against Ransomware 3.0 and Building Resilience

Duo's Security Blog

JUNE 27, 2023

Twenty-nine per cent of incidents reported to the Office of the Australian Information Commissioner (OAIC) were attributed to ransomware between July and December of 2022, making it the most reported type of security breach of the year. When users get phished, bad guys start attempting to use the stolen credentials within 10 minutes.

Ransomware

Ransomware Healthcare Phishing Authentication

The source code of Zeppelin Ransomware sold on a hacking forum

Security Affairs

JANUARY 5, 2024

Researchers from cybersecurity firm KELA reported that a threat actor announced on a cybercrime forum the sale of the source code and a cracked version of the Zeppelin ransomware builder for $500. A threat actor announced the sale of the source code and a cracked version of the Zeppelin ransomware builder for $500.

Ransomware

Ransomware Hacking Encryption Malware

Rhysida ransomware gang claimed China Energy hack

Security Affairs

NOVEMBER 25, 2023

The ransomware gang hit organizations in multiple industries, including the education, healthcare, manufacturing, information technology, and government sectors. According to the advisory, the threat actors have exploited Zerologon ( CVE-2020-1472 ) in Microsoft’s Netlogon Remote Protocol in phishing attempts.

Ransomware

Ransomware Hacking Engineering Manufacturing

Rhysida ransomware group hacked Abdali Hospital in Jordan

Security Affairs

DECEMBER 26, 2023

The ransomware gang hit organizations in multiple industries, including the education, healthcare, manufacturing, information technology, and government sectors. According to the advisory, the threat actors have exploited Zerologon ( CVE-2020-1472 ) in Microsoft’s Netlogon Remote Protocol in phishing attempts.

Hacking

Hacking Ransomware Manufacturing Healthcare

Rhysida ransomware group hacked King Edward VII’s Hospital in London

Security Affairs

NOVEMBER 29, 2023

The ransomware gang hit organizations in multiple industries, including the education, healthcare, manufacturing, information technology, and government sectors. According to the advisory, the threat actors have exploited Zerologon ( CVE-2020-1472 ) in Microsoft’s Netlogon Remote Protocol in phishing attempts.

Ransomware

Ransomware Hacking Manufacturing Healthcare

The Human Factor in Cybersecurity Breaches

CyberSecurity Insiders

JUNE 25, 2022

In this context, the prime risks are the responsibility and role of employees in ensuring data and information security. This hack exposed some of its investors’ personal and financial information to a third party. The cyber attack succeeded when one of Sequoia’s employees fell victim to a phishing attack.

Cybersecurity

Cybersecurity Social Engineering Phishing Engineering

Security Affairs newsletter Round 451 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

DECEMBER 24, 2023

LockBit ransomware gang claims to have breached accountancy firm Xeinadin Mobile virtual network operator Mint Mobile discloses a data breach Akira ransomware gang claims the theft of sensitive data from Nissan Australia Member of Lapsus$ gang sentenced to an indefinite hospital order Real estate agency exposes details of 690k customers ESET fixed (..)

Ransomware

Ransomware Mobile Malware Marketing

Rhysida ransomware gang is auctioning data stolen from the British Library

Security Affairs

NOVEMBER 20, 2023

The ransomware gang hit organizations in multiple industries, including the education, healthcare, manufacturing, information technology, and government sectors. According to the advisory, the threat actors have been observed exploiting Zerologon ( CVE-2020-1472 ) in Microsoft’s Netlogon Remote Protocol in phishing attempts.

Ransomware

Ransomware Cyber Attacks Manufacturing Healthcare

The dangers of “connected” healthcare: predictions for 2022

Healthcare organizations faced a 45% increase in attacks since November

Webinars

Trending Sources

US HHS warns healthcare orgs of Royal Ransomware attacks

Webinars

As of May 2024, Black Basta ransomware affiliates hacked over 500 organizations worldwide

Threat spotlight: Conti, the ransomware used in the HSE healthcare attack

Five Canadian Hospitals impacted by a ransomware attack on TransForm provider

Daixin Team group claimed the hack of North Texas Municipal Water District

Internationa police operation led to the arrest of the SilverTerrier gang leader

Cybersecurity Management Lessons from Healthcare Woes

Reading INTERPOL the African Cyberthreat Assessment Report 2021

Carbanak malware returned in ransomware attacks

Security Affairs newsletter Round 462 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs newsletter Round 373 by Pierluigi Paganini

Security Affairs newsletter Round 452 by Pierluigi Paganini – INTERNATIONAL EDITION

COVID-19 Has United Cybersecurity Experts, But Will That Unity Survive the Pandemic?

Daixin Team targets health organizations with ransomware, US agencies warn

Telehealth: A New Frontier in Medicine—and Security

FIN11 gang started deploying ransomware to monetize its operations

FBI and CISA warn of attacks by Rhysida ransomware gang

The U.S. CISA and FBI warn of Royal ransomware operation

Report Reveals Top Cyber Threats, Trends of 2023 First Half

Microsoft aims at stopping cybercriminals from using cracked copies of Cobalt Strike

Security Affairs newsletter Round 402 by Pierluigi Paganini

Coronavirus-themed attacks April 12 – April 18, 2020

Cuba Ransomware received over $60M in Ransom payments as of August 2022

Cuba ransomware gang hacked 49 US critical infrastructure organizations

TrickGate, a packer used by malware to evade detection since 2016

2020 Was a Privacy Wake-up Call: Don't Go Back to Sleep in 2021!

Colorado HCPF Department notifies 4 million individuals after IBM MOVEit breach

Security Affairs newsletter Round 340

CISA, FBI shared a joint advisory to warn of Zeppelin ransomware attacks

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

Wannacry, the hybrid malware that brought the world to its knees

2.6 billion records exposed in 2,308 disclosed data breaches in H1

FBI warns of PYSA Ransomware attacks against Education Institutions in US and UK

U.S. Department of Health warns of attacks against IT help desks

Protecting Against Ransomware 3.0 and Building Resilience

The source code of Zeppelin Ransomware sold on a hacking forum

Rhysida ransomware gang claimed China Energy hack

Rhysida ransomware group hacked Abdali Hospital in Jordan

Rhysida ransomware group hacked King Edward VII’s Hospital in London

The Human Factor in Cybersecurity Breaches

Security Affairs newsletter Round 451 by Pierluigi Paganini – INTERNATIONAL EDITION

Rhysida ransomware gang is auctioning data stolen from the British Library

Stay Connected