Cybercrime, Healthcare and Malware - Cyber Security Informer

Change Healthcare data breach impacted over 100 million people

Security Affairs

OCTOBER 25, 2024

The Change Healthcare data breach in the February 2024 impacted over 100 million, the largest-ever healthcare data breach in the US. UnitedHealth Group announced that the data breach suffered by Change Healthcare in February 2024 impacted more than 100 million individuals. Change Healthcare now provided an update to the U.S.

Data breaches

Data breaches Healthcare Cybercrime Insurance

Change Healthcare data breach exposed the private data of over half the U.S.

Security Affairs

JANUARY 26, 2025

The Change Healthcare data breach is worse than initially estimated: approximately 190 million people have been affected. The Change Healthcare data breach is worse than initially estimated, the incident has impacted 190 million people. The incident impacted thousands of pharmacies and healthcare providers.

Healthcare

Healthcare Data breaches Insurance Cybercrime

Russian Phobos ransomware operator faces cybercrime charges

Security Affairs

NOVEMBER 19, 2024

Russian Phobos ransomware operator Evgenii Ptitsyn, accused of managing attacks, was extradited from South Korea to the US to face cybercrime charges. Russian Phobos ransomware operator Evgenii Ptitsyn, suspected of playing a key role in the ransomware operations, was extradited from South Korea to the US to face cybercrime charges.

Cybercrime

Cybercrime Ransomware Healthcare Hacking

CEO of cybersecurity firm charged with installing malware on hospital systems

Security Affairs

APRIL 26, 2025

Veritaco CEO Jeffrey Bowie faces charges for allegedly installing malware on hospital computers, violating Oklahoma’s Computer Crimes Act. The man is accused of having installed the malware on the hospital computers on August 6, 2024. . Anthony Hospital. ” reads the hospital’s statement. ” St.

Malware

Malware Cybersecurity Healthcare Media

NailaoLocker ransomware targets EU healthcare-related entities

Security Affairs

FEBRUARY 20, 2025

NailaoLocker ransomware is a new threat that targeted European healthcare organizations from June to October 2024. This launches the malware routine.” NailaoLocker ransomware is written in C++,the researchers said that the malware is not sophisticated and is poorly designed. ” continues the report.

Healthcare

Healthcare Ransomware VPN Malware

Qilin ransomware gang now offers a “Call Lawyer” feature to pressure victims

Security Affairs

JUNE 22, 2025

This move, reported by cybersecurity firm Cybereason, shows Qilin stepping up its operations and trying to take over space left by rival cybercrime groups. The Qilin ransomware group has been active since at least August 2022 but gained attention in June 2024 for attacking Synnovis , a UK governmental service provider for healthcare.

Ransomware

Ransomware DDOS Cybercrime Healthcare

FBI, DHS, HHS Warn of Imminent, Credible Ransomware Threat Against U.S. Hospitals

Krebs on Security

OCTOBER 28, 2020

Department of Homeland Security hastily assembled a conference call with healthcare industry executives warning about an “imminent cybercrime threat to U.S. hospitals and healthcare providers.” ” The agencies on the conference call, which included the U.S.

Ransomware

Ransomware Healthcare Computers and Electronics Cybercrime

Wanted: Disgruntled Employees to Deploy Ransomware

Krebs on Security

AUGUST 19, 2021

Apparently now that includes emailing employees directly and asking them to unleash the malware inside their employer’s network in exchange for a percentage of any ransom amount paid by the victim company. Image: Abnormal Security. billion in 2020. Image: FBI. For example, the Lockbit 2.0

Ransomware

Ransomware Social Engineering Cybercrime Scams

Arrest, Seizures Tied to Netwalker Ransomware

Krebs on Security

JANUARY 27, 2021

and Bulgarian authorities this week seized the darkweb site used by the NetWalker ransomware cybercrime group to publish data stolen from its victims. “Attacks have specifically targeted the healthcare sector during the COVID-19 pandemic, taking advantage of the global crisis to extort victims,” the DOJ said.

Ransomware

Ransomware Cybercrime Antivirus Encryption

The Vanilla Tempest cybercrime gang used INC ransomware for the first time in attacks on the healthcare sector

Security Affairs

SEPTEMBER 20, 2024

Microsoft warns that financially motivated threat actor Vanilla Tempest is using INC ransomware in attacks aimed at the healthcare sector in the U.S. healthcare sector. The threat actor has been active since July 2022, it was observed targeting organizations in the education, healthcare, IT, and manufacturing sectors.

Healthcare

Healthcare Ransomware Cybercrime Manufacturing

FBI, CISA alert warns of imminent ransomware attacks on healthcare sector

Security Affairs

OCTOBER 29, 2020

FBI and the DHS’s CISA agencies published a joint alert to warn hospitals and healthcare providers of imminent ransomware attacks from Russia. “CISA, FBI, and HHS have credible information of an increased and imminent cybercrime threat to U.S. hospitals and healthcare providers. hospitals and healthcare providers.

Healthcare

Healthcare Ransomware Cybercrime DNS

Attacks Aimed at Disrupting the Trickbot Botnet

Krebs on Security

OCTOBER 2, 2020

Over the past 10 days, someone has been launching a series of coordinated attacks designed to disrupt Trickbot , an enormous collection of more than two million malware-infected Windows PCs that are constantly being harvested for financial data and are often used as the entry point for deploying ransomware within compromised organizations.

Ransomware

Ransomware Malware Healthcare Internet

Security Affairs newsletter Round 493 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

OCTOBER 13, 2024

The Mexican Drug Cartels Want You Casio: Notice of Partial Service Outage and Information Leak Caused by Ransomware Attack He founded a “startup” to access sanctioned Russian websites: the cyber police of Khmelnytskyi region exposed the hacker Hacked ‘AI Girlfriend’ Data Shows Prompts Describing Child Sexual Abuse Malware Over 300,000!

Data breaches

Data breaches Cryptocurrency Cybercrime Artificial Intelligence

Conti Ransomware Group Diaries, Part I: Evasion

Krebs on Security

MARCH 1, 2022

A Ukrainian security researcher this week leaked several years of internal chat logs and other sensitive data tied to Conti , an aggressive and ruthless Russian cybercrime group that focuses on deploying its ransomware to companies with more than $100 million in annual revenue. hospitals and healthcare providers.”. 428 hospitals.”

Ransomware

Ransomware Healthcare Cybercrime Government

Healthcare sector targeted : what you need to know about the hackers very unusual strategy

Security Affairs

MARCH 21, 2020

Orange Cyberdefense’s Epidemiology Lab has published a report on cyberattacks targeting the healthcare sector. While COVID-19 infections around the world are exploding, cyber threat actors are trying to capitalise on this global health crisis by creating malwares or launching attacks with a COVID-19 theme. Read the report here.

Healthcare

Healthcare Advertising Cybercrime Cyber threats

FBI Warns of CyberAttacks Targeting US Healthface Facilities

Adam Levin

NOVEMBER 6, 2020

Healthcare facilities are under an increased threat of cyberattack, according to the FBI. In a joint cybersecurity advisory with the Cybersecurity and Infrastructure Agency (CISA) and the Department of Health and Human Services (HHS), the FBI warned of an “increased and imminent cybercrime threat to U.S.

Healthcare

Healthcare Antivirus Backups Cybercrime

New Ransom Payment Schemes Target Executives, Telemedicine

Krebs on Security

DECEMBER 8, 2022

The first centers on targeting healthcare organizations that offer consultations over the Internet and sending them booby-trapped medical records for the “patient.” healthcare organizations. “ TA505 “), and a newer ransom group known as Venus. Last month, the U.S. “They are targeting a lot of U.S.

Healthcare

Healthcare Backups Ransomware Insurance

Healthcare organizations faced a 45% increase in attacks since November

Security Affairs

JANUARY 5, 2021

According to a new report published by Check Point, organizations in the healthcare industry have faced a 45% increase in attacks since November. Check Point researchers reported a surge in the number of attacks against organizations in the healthcare industry , +45% since November. SecurityAffairs – hacking, healthcare industry).

Healthcare

Healthcare Ransomware DDOS Cybercrime

Crooks target Healthcare facilities involved in Coronavirus containment with Ransomware

Security Affairs

APRIL 14, 2020

Recently organizations in healthcare, research, and government facilities have been hit by Coronavirus-themed attacks that deployed multiple malware families, including ransomware and information stealers (i.e. AgentTesla ). Attackers used a spoofed address mimicking the World Health Organization (noreply@who[.]int) Pierluigi Paganini.

Healthcare

Healthcare Ransomware Phishing Government

Notorious ransomware programmer Mikhail Pavlovich Matveev arrested in Russia

Security Affairs

NOVEMBER 29, 2024

Russian authorities arrested ransomware affiliate Mikhail Matveev, aka Wazawaka, for developing malware and ties to hacking groups. and New Jersey, as well as organizations in the healthcare and other sectors nationwide. The attacks hit law enforcement agencies in Washington, D.C.

Ransomware

Ransomware Healthcare Hacking Malware

RA World Ransomware: A Babuk Successor Targets Healthcare

Penetration Testing

MARCH 4, 2024

When the Babuk ransomware group disbanded in 2021, it seemed like a minor victory in the ongoing battle against cybercrime. However, the leak of Babuk’s source code has become a breeding ground for new... The post RA World Ransomware: A Babuk Successor Targets Healthcare appeared first on Penetration Testing.

Healthcare

Healthcare Penetration Testing Ransomware Cybercrime

Does Your Organization Have a Security.txt File?

Krebs on Security

SEPTEMBER 20, 2021

Or maybe it isn’t entirely clear who should get the report when remote access to an organization’s internal network is being sold in the cybercrime underground. Having a security.txt file can make it easier for organizations to respond to active security threats.

Retail

Retail Healthcare Internet Internet

Memorial Hospital and Manor suffered a ransomware attack

Security Affairs

NOVEMBER 6, 2024

Memorial Hospital and Manor is a community hospital and healthcare facility that serves Decatur County and surrounding areas in southwest Georgia. It offers a range of healthcare services, including emergency care, inpatient and outpatient services, surgical care, and specialized medical services. Ransomware attacks on U.S.

Ransomware

Ransomware Healthcare Antivirus Data breaches

Healthcare provider Ardent Health Services disclosed a ransomware attack

Security Affairs

NOVEMBER 28, 2023

The US Healthcare provider Ardent Health Services disclosed that it was the victim of a ransomware attack last week. Ardent Health Services is a healthcare company that operates hospitals and other medical facilities in the United States. The healthcare provider disclosed that it has suffered a ransomware attack on November 23. .”

Healthcare

Healthcare Ransomware Technology Internet

RansomHouse gang claims the hack of the Loretto Hospital in Chicago

Security Affairs

MARCH 10, 2025

They provide healthcare services including: primary care, geriatric medicine, vision care, behavioral health services, pediatrics, womens health, pediatric medicine, family planning and dental services. healthcare providers surged in 2024, with 98 attacks compromising 117 million records. Ransomware attacks on U.S.

Hacking

Hacking Healthcare Backups Ransomware

Healthcare – Patient or Perpetrator? – The Cybercriminals Within

Security Affairs

NOVEMBER 8, 2021

The healthcare industry might be known for the work it does to treat patients. With copious amounts of data collected by healthcare facilities, cybercriminals often target such entities. Moreover, the healthcare industry collects unique data, known as Protected Health Information (PHI), which is extremely valuable.

Healthcare

Healthcare Identity Theft Digital transformation Data collection

How Cybercriminals are Weathering COVID-19

Krebs on Security

APRIL 30, 2020

In many ways, the COVID-19 pandemic has been a boon to cybercriminals: With unprecedented numbers of people working from home and anxious for news about the virus outbreak, it’s hard to imagine a more target-rich environment for phishers, scammers and malware purveyors. ” Alex Holden , founder and CTO of Hold Security , agreed.

Cybercrime

Cybercrime Computers and Electronics Marketing Scams

Cybersecurity Management Lessons from Healthcare Woes

eSecurity Planet

MAY 30, 2024

Ransomware attacks and data breaches make headlines when they shut down huge connected healthcare providers such as Ascension Healthcare or Change Healthcare. IT should never be the top expense for a healthcare organization. The costs, affected patients, and consequences continue to be tallied.

Healthcare

Healthcare Cybersecurity Backups Penetration Testing

Russian-speaking cybercrime evolution: What changed from 2016 to 2021

SecureList

OCTOBER 20, 2021

Having been in the field for so long, we have witnessed some major changes in the cybercrime world’s modus operandi. This report shares our insights into the Russian-speaking cybercrime world and the changes in how it operates that have happened in the past five years. But our visibility showed otherwise. Key trends.

Cybercrime

Cybercrime Banking Malware Ransomware

U.S., U.K. Sanction 7 Men Tied to Trickbot Hacking Group

Krebs on Security

FEBRUARY 9, 2023

Authorities in the United States and United Kingdom today levied financial sanctions against seven men accused of operating “ Trickbot ,” a cybercrime-as-a-service platform based in Russia that has enabled countless ransomware attacks and bank account takeovers since its debut in 2016. companies and government entities.

Hacking

Hacking Cybercrime Ransomware Government

The DPRK Is the NKOTB of Healthcare Ransomware

SecureWorld News

FEBRUARY 16, 2023

Cybersecurity and Infrastructure Security Agency (CISA) provides an overview of the DPRK's state-sponsored ransomware and "updates the July 6, 2022, joint CSA North Korean State-Sponsored Cyber Actors Use Maui Ransomware to Target the Healthcare and Public Health Sector. healthcare systems. Obfuscate identity.

Healthcare

Healthcare Ransomware Cryptocurrency Cybercrime

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 12

Security Affairs

SEPTEMBER 22, 2024

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape. UNC1860 and the Temple of Oats: Iran’s Hidden Hand in Middle Eastern Networks Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini

Malware

Malware IoT Healthcare Cryptocurrency

Black Basta ransomware gang hit BT Group

Security Affairs

DECEMBER 4, 2024

Black Basta has targeted at least 12 critical infrastructure sectors, including Healthcare and Public Health. Black Basta affiliates have targeted over 500 private industry and critical infrastructure entities, including healthcare organizations, in North America, Europe, and Australia.” reads the CSA.

Ransomware

Ransomware Telecommunications Healthcare Insurance

No company too small for Phobos ransomware gang, indictment reveals

Malwarebytes

DECEMBER 2, 2024

The government’s indictment against Ptitsyn should dispel any notion that ransomware gangs only target the largest, richest, most robust corporations on the planet, as one Phobos affiliate allegedly extorted a Maryland-based healthcare provider out of just $2,300—possibly the lowest payment ever recorded. Create offsite, offline backups.

Ransomware

Ransomware Backups Small Business Hacking

Extortion, precision malware, and ruthless scams. Read the State of Malware 2021 report

Malwarebytes

FEBRUARY 16, 2021

Today, we are showing readers just what that evolution looked like, in our State of Malware 2021 report. This report provides our most comprehensive analysis of last year’s malware trends, with breakdowns by malware category, malware type, operating system, region, industry, and more.

Malware

Malware Scams Spyware Healthcare

Massive InfoStealer Malware Breach Exposes 184 Million Credentials

SecureWorld News

JUNE 3, 2025

Alarmingly, the database also held sensitive data from banking institutions, healthcare providers, and government portals. Fowler's analysis suggests that the data was harvested using InfoStealer malware, a malicious software designed to extract sensitive information from infected systems.

Malware

Malware Identity Theft Passwords Phishing

Carbanak malware returned in ransomware attacks

Security Affairs

DECEMBER 26, 2023

Researchers at NCC Group reported that in November they observed the return of the infamous banking malware Carbanak in ransomware attacks. The cybersecurity firm NCC Group reported that in November the banking malware Carbanak was observed in ransomware attacks. ” reads the report published by NCC Group.

Malware

Malware Ransomware Banking Healthcare

Gootkit Loader campaign targets Australian Healthcare Industry

Security Affairs

JANUARY 11, 2023

Threat actors are targeting organizations in the Australian healthcare sector with the Gootkit malware loader. Trend Micro researchers warn that Gootkit Loader is actively targeting the Australian healthcare industry. Threat actors also used healthcare providers across Australia. SecurityAffairs – hacking, malware).

Healthcare

Healthcare Media Malware Hacking

South African telecom provider Cell C disclosed a data breach following a cyberattack

Security Affairs

APRIL 13, 2025

healthcare providers surged in 2024, with 98 attacks compromising 117 million records. High-profile breaches include Change Healthcare (100M records), Summit Pathology (1.8M), OnePoint Patient Care (796K), and Boston Childrens Health Physicians (909K). Ransomware attacks on U.S.

Data breaches

Data breaches Unstructured Data Identity Theft Healthcare

REvil ransomware operators breached healthcare org Valley Health Systems

Security Affairs

AUGUST 27, 2020

REvil ransomware operators claimed to have breached another healthcare organization, the victim is Valley Health Systems. Healthcare organizations are a privileged target of hackers due to the sensitive data they manage. The organization operates over 40 healthcare facilities with over 400 employees working across all their centers. .

Healthcare

Healthcare Ransomware Advertising Cyber Risk

US HHS warns healthcare orgs of Royal Ransomware attacks

Security Affairs

DECEMBER 10, 2022

The US Department of Health and Human Services (HHS) warns healthcare organizations of Royal ransomware attacks. The Health and Human Services (HHS) is aware of attacks against the Healthcare and Public Healthcare (HPH) sector. The malware changes the extension of the encrypted files to ‘.royal’. Pierluigi Paganini.

Healthcare

Healthcare Ransomware Encryption Malware

FBI, CISA, HHS warn of targeted ALPHV/Blackcat ransomware attacks against the healthcare sector

Security Affairs

FEBRUARY 28, 2024

healthcare organizations of targeted ALPHV/Blackcat ransomware attacks. healthcare organizations of targeted attacks conducted by ALPHV/Blackcat ransomware attacks. This alert aims at organizations in the healthcare sector because ALPHV Blackcat affiliates have been observed primarily targeting this sector.

Healthcare

Healthcare Ransomware Government Insurance

2023 Anna Jaques Hospital data breach impacted over 310,000 people

Security Affairs

DECEMBER 8, 2024

Anna Jaques Hospital is a not-for-profit community healthcare facility located in Newburyport, Massachusetts. On January 19, the Money Messageransomware gang added the healthcare organization to its Tor leak site claiming the theft of 600GB of sensitive data, including PII and diagnoses.

Data breaches

Data breaches Insurance Healthcare Ransomware

Ransomware Gangs Now Outing Victim Businesses That Don’t Pay Up

Krebs on Security

DECEMBER 16, 2019

Less than 48 hours ago, the cybercriminals behind the Maze Ransomware strain erected a Web site on the public Internet, and it currently lists the company names and corresponding Web sites for eight victims of their malware that have declined to pay a ransom demand. “Wait for their databases and private papers here.

Ransomware

Ransomware Data breaches Healthcare Cybercrime

Change Healthcare data breach impacted over 100 million people

Change Healthcare data breach exposed the private data of over half the U.S.

Trending Sources

Russian Phobos ransomware operator faces cybercrime charges

CEO of cybersecurity firm charged with installing malware on hospital systems

NailaoLocker ransomware targets EU healthcare-related entities

Qilin ransomware gang now offers a “Call Lawyer” feature to pressure victims

FBI, DHS, HHS Warn of Imminent, Credible Ransomware Threat Against U.S. Hospitals

Wanted: Disgruntled Employees to Deploy Ransomware

Arrest, Seizures Tied to Netwalker Ransomware

The Vanilla Tempest cybercrime gang used INC ransomware for the first time in attacks on the healthcare sector

FBI, CISA alert warns of imminent ransomware attacks on healthcare sector

Attacks Aimed at Disrupting the Trickbot Botnet

Security Affairs newsletter Round 493 by Pierluigi Paganini – INTERNATIONAL EDITION

Conti Ransomware Group Diaries, Part I: Evasion

Healthcare sector targeted : what you need to know about the hackers very unusual strategy

FBI Warns of CyberAttacks Targeting US Healthface Facilities

New Ransom Payment Schemes Target Executives, Telemedicine

Healthcare organizations faced a 45% increase in attacks since November

Crooks target Healthcare facilities involved in Coronavirus containment with Ransomware

Notorious ransomware programmer Mikhail Pavlovich Matveev arrested in Russia

RA World Ransomware: A Babuk Successor Targets Healthcare

Does Your Organization Have a Security.txt File?

Memorial Hospital and Manor suffered a ransomware attack

Healthcare provider Ardent Health Services disclosed a ransomware attack

RansomHouse gang claims the hack of the Loretto Hospital in Chicago

Healthcare – Patient or Perpetrator? – The Cybercriminals Within

How Cybercriminals are Weathering COVID-19

Cybersecurity Management Lessons from Healthcare Woes

Russian-speaking cybercrime evolution: What changed from 2016 to 2021

U.S., U.K. Sanction 7 Men Tied to Trickbot Hacking Group

The DPRK Is the NKOTB of Healthcare Ransomware

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 12

Black Basta ransomware gang hit BT Group

No company too small for Phobos ransomware gang, indictment reveals

Extortion, precision malware, and ruthless scams. Read the State of Malware 2021 report

Massive InfoStealer Malware Breach Exposes 184 Million Credentials

Carbanak malware returned in ransomware attacks

Gootkit Loader campaign targets Australian Healthcare Industry

South African telecom provider Cell C disclosed a data breach following a cyberattack

REvil ransomware operators breached healthcare org Valley Health Systems

US HHS warns healthcare orgs of Royal Ransomware attacks

FBI, CISA, HHS warn of targeted ALPHV/Blackcat ransomware attacks against the healthcare sector

2023 Anna Jaques Hospital data breach impacted over 310,000 people

Ransomware Gangs Now Outing Victim Businesses That Don’t Pay Up

Stay Connected