Collaborate Disseminate
An analysis of a new backdoor called “Poison Frog” revealed that the OilRig threat group was sloppy in its development of the malware. Kaspersky Lab came across Poison Frog while scanning its archives using its YARA rule to hunt for new and… Continue reading Poison Frog Malware Samples Reveal OilRig’s Sloppiness
A New Jersey hospital said that it was forced to cancel some surgeries and other medical procedures after falling victim to a ransomware attack. Hackensack Meridian Health, a non-profit health care center based in Edison, New Jersey, revealed to the Wa… Continue reading Medical Care at NJ Hospital Disrupted by Ransomware Attack
Cheyenne Regional Medical Center revealed it’s in the process of notifying patients about a security incident that might have exposed their personal data. On April 12, 2019, Cheyenne Regional Medical Center (CRMC) first discovered suspicious acti… Continue reading Data Security Incident Disclosed by Cheyenne Regional Medical Center
Attackers provided victims who paid with an updated Ryuk ransomware decryptor that could potentially damage their larger files. Emsisoft found that malicious actors had added numerous new features to Ryuk ransomware over the past year. In a lesser-know… Continue reading Updated Ryuk Ransomware Decryptor Could Damage Larger Files
A new Spotify-themed phishing campaign informed recipients that the music streaming service had frozen their subscriptions. On 5 December, MailGuard discovered an email that appeared to come from Spotify. The email itself used the display name “S… Continue reading Spotify Phishing Campaign Tells Users that Their Subscriptions Are Frozen
Sunrise Community Health disclosed a data privacy event that might have affected some patients’ personal and medical information. In the fall of 2019, Sunrise Community Health (“Sunshine”) learned of a data privacy incident through wh… Continue reading Data Privacy Event Disclosed by Sunrise Community Health
Researchers have detected a new malware family called “ZeroCleare” that’s targeting the energy and industrial sectors in the Middle East. IBM X-Force Incident Response and Intelligence Services (IRIS) launched an investigation into Ze… Continue reading ZeroCleare Malware Targeting Energy, Industrial Sectors in Middle East
The online store for American gun manufacturer Smith & Wesson fell victim to a Magecart attack that’s designed to steal customers’ payment data. Willem de Groot of Sanguine Security learned that a particular Magecart group had been impe… Continue reading Smith & Wesson Online Store Affected by Magecart Attack
After its developers fixed several issues, DeathRansom ransomware is now actively infecting users and encrypting victims’ data. DeathRansom wasn’t actually crypto-ransomware when attackers first began distributing it. At that time, the thre… Continue reading DeathRansom Ransomware Fixes Issues, Now Encrypting Victims’ Data
A new threat group called “Fullz House” is using both phishing and web skimming in order to maximize the profits of its attacks. Fullz House isn’t new to the threat landscape, but RiskIQ observed that the group had expanded its activi… Continue reading Fullz House Group Using Phishing and Web Skimming to Maximize Profits