Incidents involving malware or ransomware. In some cases, incidents called “ransomware” do not involve any locking but merely hack, exfiltrate, and attempt to extort.
Engadget reports: The state agencies of Maine had fallen victim to cybercriminals who exploited a vulnerability in the MOVEit file transfer tool, making them the latest addition to the growing list of entities affected by the massive hack involving the software. In a notice the government has published about the cybersecurity incident, it said the event impacted […]
The Allied Pilots Association (APA) is the labor union representing American Airlines pilots. The following is a cybersecurity update on their site dated November 2: On October 30, we experienced a cybersecurity incident. Upon discovery of the incident, we immediately took steps to secure our network. Our IT team, with the support of outside experts, […]
Bleeping Computer reports: Aerospace giant Boeing is investigating a cyberattack that impacted its parts and distribution business after the LockBit ransomware gang claimed that they breached the company’s network and stole data. Boeing says the incident did not impact flight safety and confirmed collaboration with law enforcement and regulatory agencies as part of an ongoing […]
Supply chain attacks continue to pose a major threat to the security of sensitive data and critical systems. Five hospitals in Ontario, Canada have been struggling to function this month after a ransomware group hit their IT and services provider. DataBreaches.net broke the news when the Daixin Team revealed that they were responsible for the […]
Towns across America continue to fall prey to ransomware gangs. This week, the SuspectFile blog reported on how the AlphV gang, also known as “BlackCat,” started leaking files from the Town of Iowa in Louisiana: The ransomware group ALPHV (BlackCat) has published a first part of exfiltrated data from the Town of Iowa in the […]
Today, the U.S. Department of Health and Human Services (HHS), Office for Civil Rights (OCR) announced a settlement under the Health Insurance Portability and Accountability Act (HIPAA) with Doctors’ Management Services, a Massachusetts medical management company that provides a variety of services, including medical billing and payor credentialing. The HIPAA Privacy, Security, and Breach Notification […]
Eric Geller reports: The Biden administration and dozens of foreign allies will pledge this week never to pay ransoms to hackers who lock up their national governments’ computer systems, hoping to discourage financially motivated cyber criminals from seeing those systems as attractive ransomware targets. The joint promise will occur as part of the third annual […]
SummaryThe Federal Bureau of Investigation (FBI) is releasing this Private Industry Notification tohighlight emerging ransomware trends and encourage organizations to implement therecommendations in the “Mitigations” section to reduce the likelihood and impact ofransomware incidents. ThreatAs of July 2023, the FBI noted two trends emerging across the ransomware environment and isreleasing this notification for industry awareness. […]
Rhysida has now added Singing River Health System in Mississippi to their dark web leak site. The health system, which includes Pascagoula Hospital, Ocean Springs Hospital, and Gulfport Hospital as well as 10 clinics discovered the ransomware attack on August 19. In its most recent update of August 31, it stated: “We understand the concerns […]
International Counter Ransomware Initiative 2023 Joint Statement
Released by the White House, November 2, 2023 The 50 members of the International Counter Ransomware Initiative (CRI)—Albania, Australia, Austria, Belgium, Brazil, Bulgaria, Canada, Colombia, Costa Rica, Croatia, the Czech Republic, the Dominican Republic, Egypt, Estonia, the European Union, France, Germany, Greece, India, INTERPOL, Ireland, Israel, Italy, Japan, Jordan, Kenya, Lithuania, Mexico, the Netherlands, New […]