CMS Notifies Individuals Potentially Impacted by Data Incident Affecting Medicare.gov Accounts
An important press release from the Centers for Medicare & Medicaid Services was published yesterday.
Iran Threatens To Release 100GB of Trump Aides’ Emails
Newsweek reports: An Iran-linked hacking group has threatened to release a batch of emails it said it has stolen from President Donald Trump‘s longtime aides, including adviser Roger Stone and White House chief of staff Susie Wiles. Reuters reported Monday that a cyberattack group that hacked the president’s campaign in 2024 claimed it had roughly 100 gigabytes of […]
US government takes down major North Korean ‘remote IT workers’ operation
TechCrunch reports: The U.S. Department of Justice announced on Monday that it had taken several enforcement actions against North Korea’s money-making operations, which rely on undercover remote IT workers inside American tech companies to raise funds for the regime’s nuclear weapons program, as well as to steal data and cryptocurrency. As part of the DOJ’s multi-state effort, […]
50 Customers of French Bank Hit by Insider SIM Swap Scam
An intern at Société Générale is believed to have facilitated the theft of more than EUR1mn (USD1.15mn) from the bank’s customers. CommsRisk reports: A business student who was interning at Société Générale, a leading multinational bank headquartered in France, is believed to have fed information to SIM swappers who stole from 50 customers of the […]
Horizon Healthcare RCM discloses ransomware attack in December
Supply-chain attacks are often a goldmine for cybercriminals. In the healthcare sector, revenue cycle management (RCM) firms process and store a great amount of personally identifiable information (PII) and protected health information (PHI). DataBreaches.net reports that another RCM firm was the victim of an attack: Horizon Healthcare RCM (“Horizon”) in Indiana is the latest RCM to […]
Ahold Delhaize data breach affected over 2.2 Million individuals
A ransomware attack on the holding company that operates several supermarkets in the US, including Food Lion, Giant Food, Hannaford, Stop & Shop, and The Giant Company affected over 2.2 million people. Security Affairs reports: Ahold Delhaize is a Dutch-Belgian multinational retail and wholesale holding company. Its name comes from the 2016 merger of two companies: […]
Citrix Bleed 2 flaw now believed to be exploited in attacks
Bleeping Computer reports: A critical NetScaler ADC and Gateway vulnerability dubbed “Citrix Bleed 2” (CVE-2025-5777) is now likely exploited in attacks, according to cybersecurity firm ReliaQuest, seeing an increase in suspicious sessions on Citrix devices. Citrix Bleed 2, named by cybersecurity researcher Kevin Beaumont due to its similarity to the original Citrix Bleed (CVE-2023-4966), is […]
Hacking a company as a way of seeking employment is still a crime
The following are two reports on one criminal case. The first is from the U.S. Attorney’s Office: A Kansas City, Mo., man has pleaded guilty for hacking into the computer system at an area nonprofit. Nicholas Michael Kloster, 32, admitted during his plea that he caused reckless damage to a protected computer owned by an […]
Scattered Spider has added North American airline and transportation organizations to their target list
Defending Against UNC3944: Cybercrime Hardening Guidance from the Frontlines UNC3944, which overlaps with public reporting on Scattered Spider, is a financially-motivated threat actor characterized by its persistent use of social engineering and brazen communications with victims. In early operations, UNC3944 largely targeted telecommunications-related organizations to support SIM swap operations. However, after shifting to ransomware and […]
Ransomware attack contributed to patient’s death
The BBC reports: The death of one person has been linked to a ransomware attack on NHS blood services at London hospitals and GP surgeries last June. King’s College Hospital NHS Foundation Trust confirmed that one patient had “died unexpectedly” during the cyber attack on 3 June 2024, which disrupted more than 10,000 appointments. A […]