Since mid-August, a variety of threat actors (and copycats alike) have been targeting organizations across all industries globally, threatening impending DDoS attacks unless Bitcoin is paid out. It’s apparent, as the campaign rages on, that some busine… Continue reading Don’t Let DDoS Extortionists Deliver a KO Punch
Since mid-August, a variety of threat actors (and copycats alike) have been targeting organizations across all industries globally, threatening impending DDoS attacks unless Bitcoin is paid out. It’s apparent, as the campaign rages on, that some businesses must be paying the extortion demands, — incentivizing the criminal activity. Others are procuring emergency DDoS defenses in order to withstand bandwidth-busting attacks and keep internet-facing infrastructure protected. As highlighted in our last blog, we’ve been busy ramping customers on to our DDoS mitigation platforms for rapid protection before the threat actors strike again. And based on recent activity, they desire a rematch. Continue reading Don’t Let DDoS Extortionists Deliver a KO Punch
Even for veterans of cybercriminal investigations, the recent extortion of a psychotherapy practice in Finland has been unusual — and disturbing. Rather than sticking only to the common tactic of trying to shake down a breached organization, the attackers who stole tens of thousands of patient records from Vastaamo also demanded ransoms from individual people. In doing so, the thieves have been leveraging some of the most sensitive medical data imaginable, and making it difficult for victims to respond collectively. “Therapeutic notes are at a different level of privacy problems,” said Mikko Hypponen, chief research officer at Finnish cybersecurity company F-Secure. “I know of a handful of cases where patients were blackmailed for their health data, but those were much smaller breaches. There’s never been a crime in Finland with so many victims as in this one.” While the incident has rocked Finland, prompting an emergency government meeting and costing Vastaamo’s CEO his job, […]
The post Why the extortion of Vastaamo matters far beyond Finland — and how cyber pros are responding appeared first on CyberScoop.
The response to a data breach at a prominent Finnish psychotherapy practice intensified over the weekend after cybercriminals reportedly posted batches of patient information on the dark web and claimed that individual people could protect their data by directly paying a ransom. The breach at Vastaamo, which has locations throughout Finland, prompted an emergency meeting of the country’s Cabinet on Sunday. The company said the incident happened as early as November 2018. Local news reports say the attackers didn’t contact Vastaamo with any demands until September of this year. Neither the company nor Finnish investigators have released many details about the nature of the breach, but reports say the attackers initially sought a payment of about 450,000 euros to protect about 40,000 patient records. The company reportedly did not pay up. Given the scale of the attack and the sensitive nature of the stolen data, the case has become a […]
The post Data breach at Finnish psychotherapy center takes a darker turn with extortion attempts appeared first on CyberScoop.
Cybercriminal gang Darkside sent $20K in donations to charities in a ‘Robin Hood’ effort that’s likely intended to draw attention to future data dumps, according to experts. Continue reading Ransomware Group Makes Splashy $20K Donation to Charities
From a cyberattack on Barnes & Noble to Zoom rolling out end-to-end encryption, Threatpost editors break down the top security stories of the week. Continue reading News Wrap: Barnes & Noble Hack, DDoS Extortion Threats and More
Organizations worldwide – including Travelex – have been sent letters threatening to launch DDoS attacks on their network unless a $230K ransom is paid. Continue reading Travelex, Other Orgs Face DDoS Threats as Extortion Campaign Rages On
Combating DDoS attacks with the highest quality of mitigation means having the right platform, processes, and people in place. At Akamai, we’re recognized as a leader for DDoS mitigation solutions based on our Edge DNS, CDN edge-scrubbing, and cloud-sc… Continue reading Balancing Protection with Performance to Double Down on DDoS
Combating DDoS attacks with the highest quality of mitigation means having the right platform, processes, and people in place. At Akamai, we’re recognized as a leader for DDoS mitigation solutions based on our Edge DNS, CDN edge-scrubbing, and cloud-scrubbing platforms that are designed to keep your internet-facing assets, services, and critical infrastructure protected. Continue reading Balancing Protection with Performance to Double Down on DDoS
Personal information of roughly 150 patients of Toronto-based St. Michael’s Hospital has been stolen in a data breach, allegedly by a former third-party employee accused of taking them while on duty. According to a letter obtained by a local news chann… Continue reading Former Medical Transcriptionist Accused of Trying to Extort Toronto Hospital Using Stolen Patient Data