Security Affairs

DECEMBER 8, 2024

The hospital revealed that the security breach exposed sensitive health data for over 316,000 patients. Anna Jaques Hospital is a not-for-profit community healthcare facility located in Newburyport, Massachusetts. On December 25, 2023, a ransomware attack hit the Anna Jaques Hospital.

Data breaches 119

Data breaches Insurance Healthcare Ransomware 119

Security Affairs

JUNE 22, 2025

The Qilin ransomware group has been active since at least August 2022 but gained attention in June 2024 for attacking Synnovis , a UK governmental service provider for healthcare. The group typically employs “double extortion,” stealing and encrypting victims’ data, then threatening to expose it unless a ransom is paid.

Ransomware 121

Ransomware DDOS Cybercrime Healthcare 121

Security Affairs

MARCH 10, 2025

They provide healthcare services including: primary care, geriatric medicine, vision care, behavioral health services, pediatrics, womens health, pediatric medicine, family planning and dental services. healthcare providers surged in 2024, with 98 attacks compromising 117 million records. Ransomware attacks on U.S.

Hacking 118

Hacking Healthcare Backups Ransomware 118

Security Affairs

NOVEMBER 2, 2024

The threat actors exploited vulnerabilities in networking devices used by businesses to gain a foothold by installing custom malware. Sophos researchers speculate the attack was part of an intelligence-gathering campaign aimed at developing malware for network devices.

Firmware 124

Firmware Government Firewall Malware 124

Security Affairs

NOVEMBER 13, 2024

The malware then disables default protections to prevent accidental encryption and uses the ‘-UsedSpaceOnly’ flag for faster encryption of only occupied disk space. Bitdefender observed an attack on a healthcare organization, where threat actors encrypted Windows 10, Windows 11, and Windows Server devices, including backups.

Ransomware 125

Ransomware Encryption Passwords Backups 125

Security Affairs

NOVEMBER 6, 2024

Memorial Hospital and Manor is a community hospital and healthcare facility that serves Decatur County and surrounding areas in southwest Georgia. It offers a range of healthcare services, including emergency care, inpatient and outpatient services, surgical care, and specialized medical services. Ransomware attacks on U.S.

Ransomware 128

Ransomware Healthcare Antivirus Data breaches 128

Security Affairs

APRIL 13, 2025

healthcare providers surged in 2024, with 98 attacks compromising 117 million records. High-profile breaches include Change Healthcare (100M records), Summit Pathology (1.8M), OnePoint Patient Care (796K), and Boston Childrens Health Physicians (909K). Ransomware attacks on U.S.

Data breaches 130

Data breaches Unstructured Data Identity Theft Healthcare 130

Security Affairs

OCTOBER 19, 2024

APT37 exploited this flaw to trick victims into downloading malware on their desktops with the toast ad program installed. The hackers targeted organizations in the chemicals, manufacturing, electronics, aerospace, healthcare, and automotive sectors. dll), allowing type confusion to occur.

Internet 143

Internet Internet Engineering Malware 143

The Last Watchdog

DECEMBER 18, 2024

And industries like healthcare face persistent targeting due to their outdated systems and high-value data. CISA updated its Secure by Design guidance, and the EUs Cyber Resilience Act and NIS2 added new requirements. Proactive collaboration and cyber risk quantification are key to ensuring operational resilience and security.

Cybersecurity 130

Cybersecurity CISO Risk Government 130

Security Affairs

OCTOBER 13, 2024

The Mexican Drug Cartels Want You Casio: Notice of Partial Service Outage and Information Leak Caused by Ransomware Attack He founded a “startup” to access sanctioned Russian websites: the cyber police of Khmelnytskyi region exposed the hacker Hacked ‘AI Girlfriend’ Data Shows Prompts Describing Child Sexual Abuse Malware Over 300,000!

Data breaches 119

Data breaches Cryptocurrency Cybercrime Artificial Intelligence 119

Security Affairs

MARCH 12, 2025

“The botnet exploits this vulnerability by injecting a payload that downloads and executes a cleartext shell dropper named dropbpb.sh, responsible for downloading the malware binaries and executing them on the compromised device.” 70) via HTTP on port 81. It processes encrypted data over a RAW socket, limiting further analysis.

IoT 75

IoT Malware Encryption DDOS 75

Security Affairs

MAY 26, 2025

Targeted organizations span critical sectors including healthcare, telecommunications, aviation, municipal government, finance, and defense across Europe, North America, and the Asia-Pacific region.” Chinese cyber spies deployed the KrustyLoader malware on Ivanti EPMM systems, using Amazon S3 buckets to deliver their malicious files.

Mobile 94

Mobile Telecommunications Authentication Internet 94

Security Affairs

DECEMBER 21, 2024

Hulea pleaded guilty to computer fraud conspiracy and wire fraud conspiracy on June 20 for his role in the NetWalker ransomware attacks against organizations worldwide, including healthcare during COVID-19. The man admitted to extorting 1,595 bitcoin (~$21.5M) in ransom payments. ” reads the press release published by DoJ.

Ransomware 109

Ransomware Healthcare Government Cryptocurrency 109

Security Affairs

MARCH 7, 2025

Medusa demands ransoms from $100,000 to $15 million, victims are organizations in healthcare, non-profits, finance, and government sectors. The group targets known vulnerabilities, mainly in Exchange Server. The researchers speculate that the ransomware group relies on initial access brokers to access target infrastructure.

Ransomware 64

Ransomware Antivirus Healthcare Encryption 64

Webroot

MARCH 3, 2025

During this time, many government agencies and consumer protection organizations come together to help educate consumers on how to keep their personal and financial information secure. How to protect yourself and your data Smart ways to secure your devices Strong passwords – Make them long, random, and unique.

Consumer Protection 101

Consumer Protection Identity Theft Scams Social Engineering 101

Security Affairs

MARCH 23, 2025

The researchers observed overlaps that include Crowdoor Loader and SparrowDoor malware. UAT-5918 mainly targets Taiwan’s telecom, healthcare, IT, and critical infrastructure sectors. The researchers noticed that tools are usually downloaded as archives and extracted before execution.

Backups 70

Backups Healthcare Accountability Malware 70

Security Affairs

NOVEMBER 18, 2024

The healthcare center discovered that a threat actor accessed and encrypted files on their systems between September 5, 2024 and September 8, 2024. On September 8, 2024, Great Plains Regional Medical Center (Oklahoma) suffered a ransomware attack. The experts believe that the attackers also copied some of those files.

Ransomware 127

Ransomware Insurance Encryption Healthcare 127

Security Affairs

MARCH 24, 2025

The group has extended its operations to countries in Asia and targets various sectors, including healthcare, real estate, construction, IT, food, and manufacturing.” . “Cloak primarily targets small to medium-sized businesses in Europe, with Germany as a key focus. ” reads a report published by Halcyon.

Ransomware 105

Ransomware Hacking Social Engineering Healthcare 105

Security Affairs

MAY 3, 2025

The ransomware gang hit organizations in multiple industries, including the education, healthcare, manufacturing, information technology, and government sectors. According to the gangs Tor leak site, at least 182 companies are victims of the operation. The victims of the group are targets of opportunity.

Government 128

Government Hacking Ransomware Healthcare 128

SecureList

DECEMBER 9, 2024

However, delegating tasks also introduces new information security challenges. This information was disseminated, making the vulnerable systems high-visibility targets for threat actors, especially as Fortinet products are commonly found in government, healthcare, and other critical sectors. Why does it matter?

Internet 104

Internet Internet Risk Social Engineering 104

Security Affairs

APRIL 5, 2025

The ransomware gang hit organizations in multiple industries, including education, healthcare, manufacturing, information technology, and government sectors. In September 2024, Port of Seattle confirmed that the Rhysida ransomware group was behind the cyberattack. The Rhysida ransomware group has been active since May 2023.

Data breaches 98

Data breaches Ransomware Cyber Attacks Healthcare 98

Security Affairs

MARCH 26, 2025

Victims included organizations from different segments, including electronics, academia, religious organizations, defense, healthcare, technology, IT/MSP vendors, and government agencies. BlackLock Ransomware was named as one of the fastest-growing ransomware strains for today.

Ransomware 79

Ransomware Cybersecurity Healthcare Accountability 79

Security Affairs

APRIL 8, 2025

HHS warned that the Everest ransomware gang was increasingly targeting healthcare organizations across the U.S. The group has increasingly targeted the healthcare industry since 2021, and claimed responsibility for a recent incident impacting a surgical facility in the United States.”

Ransomware 86

Ransomware Healthcare Hacking Scams 86

Security Affairs

JUNE 22, 2025

Iran confirmed it shut down internet to protect the country against cyberattacks Godfather Android trojan uses virtualization to hijack banking and crypto apps Cloudflare blocked record-breaking 7.3 Million people Watch out, Veeam fixed a new critical bug in Backup & Replication product U.S.

Data breaches 64

Data breaches DDOS Backups Internet 64

Security Affairs

MARCH 2, 2025

Qilin has targeted various sectors, including healthcare. Initially, Qilin’s ransomware was written in Go but transitioned to Rust in December 2022, enhancing its capabilities. Notably, in June 2024, an attack on the UK-based medical laboratory company Synnovis , which significantly disrupted operations across London hospitals.

Ransomware 80

Ransomware Cybercrime Encryption Healthcare 80

Security Affairs

OCTOBER 27, 2024

Chinese cyber spies targeted phones used by Trump and Vance Irish Data Protection Commission fined LinkedIn €310M for GDPR infringement Change Healthcare data breach impacted over 100 million people OnePoint Patient Care data breach impacted 795916 individuals From Risk Assessment to Action: Improving Your DLP Response U.S.

Data breaches 124

Data breaches Healthcare Cybercrime Hacking 124

Security Affairs

MAY 26, 2025

As of now, the ransomware group has not added the healthcare organization to its leak site. The company notified the US Department of Health and Human Services (HHS) that the data breach impacted 235,911 individuals. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking,data breach)

Data breaches 74

Data breaches Identity Theft Healthcare Insurance 74

Security Affairs

FEBRUARY 23, 2025

CISA adds Craft CMS and Palo Alto Networks PAN-OS flaws to its Known Exploited Vulnerabilities catalog Atlassian fixed critical flaws in Confluence and Crowd Salt Typhoon used custom malware JumbledPath to spy U.S. Military & Defense Sector: A Cybersecurity Disaster in the Making Analyzing ELF/Sshdinjector.A!

Scams 68

Scams Malware Phishing Encryption 68

Security Affairs

DECEMBER 1, 2024

CISA adds Array Networks AG and vxAG ArrayOS flaw to its Known Exploited Vulnerabilities catalog Thai police arrested Chinese hackers involved in SMS blaster attacks Zyxel firewalls targeted in recent ransomware attacks Malware campaign abused flawed Avast Anti-Rootkit driver Russia-linked APT TAG-110 uses targets Europe and Asia Russia-linked threat (..)

Cybercrime 74

Cybercrime Firewall Phishing Social Engineering 74

Security Affairs

FEBRUARY 1, 2025

The New York Blood Center faced a ransomware attack on Sunday, forcing the healthcare organization to reschedule appointments. The New York Blood Center suffered a ransomware attack on Sunday, causing appointment rescheduling. The New York Blood Center (NYBC) is a community, nonprofit blood bank based in New York City.

Ransomware 80

Ransomware Banking Healthcare Hacking 80

Security Affairs

JUNE 6, 2025

Details in our flash alert on CATALYST: [link] pic.twitter.com/oRHQzzIph8 — PRODAFT (@PRODAFT) June 6, 2025 The Qilin ransomware group has been active since at least August 2022 but gained attention in June 2024 for attacking Synnovis , a UK governmental service provider for healthcare.

Ransomware 78

Ransomware Authentication Firewall Healthcare 78

Security Affairs

DECEMBER 11, 2024

Tianfeng worked at Sichuan Silence Information Technology Co., The man and co-conspirators exploited a zero-day vulnerability, tracked as CVE-2020-12271 , in Sophos firewalls to deploy malware. The malware stole data and encrypted files to block remediation attempts. based Sophos Ltd. AD, LDAP) are not impacted by the flaw.

Firewall 78

Firewall Hacking Malware Passwords 78

Security Affairs

JUNE 25, 2025

The healthcare organization disclosed a data breach that impacted 101104 individuals. The security incident occurred on or about April 10, 2024, and impacted the company network. “Upon learning of the issue, we commenced a prompt and thorough investigation.

Data breaches 68

Data breaches Healthcare Hacking Cybersecurity 68

Security Affairs

APRIL 20, 2025

infrastructure International Press Newsletter Cybercrime Pixel-Perfect Trap: The Surge of SVG-Borne Phishing Attacks Threat actors misuse Node.js infrastructure International Press Newsletter Cybercrime Pixel-Perfect Trap: The Surge of SVG-Borne Phishing Attacks Threat actors misuse Node.js

Data breaches 62

Data breaches Malware Phishing Hacking 62

SecureWorld News

DECEMBER 27, 2024

Mo Wehbi, VP, Information Security & PMO, Penske Automotive Group: The Good and the Bad "The Good: Widespread Adoption of AI and Machine Learning for Threat Detection: AI will become more sophisticated and integral in identifying threats in real-time, reducing response times and mitigating risks faster than ever before. 'The

Cybersecurity 123

Cybersecurity Risk Government CISO 123

Centraleyes

MARCH 3, 2025

Similarly, the states Information Security Breach and Notification Act (2005) was one of the earliest breach notification laws in the U.S., NYDOH Oversight (10 NYCRR 405.46) The New York Department of Health enforces standards for securing healthcare data, complementing HRIPA and federal HIPAA requirements.

Data breaches 52

Data breaches Risk Financial Services Data privacy 52

Security Affairs

MAY 28, 2025

Gholinejads conviction reflects the Criminal Divisions commitment to bringing cybercriminals who target our cities, healthcare system, and businesses to justice no matter where they are located. There will be no impunity for these destructive attacks. Starting in 2019, Gholinejad and and his co-conspirators hacked into U.S.

Ransomware 71

Ransomware Healthcare Data breaches Hacking 71