Collaborate Disseminate
Ina Fried reports: Data breaches and ransomware attacks are getting worse. Some 2.6 billion personal records have been exposed in data breaches over the past two years and that number continues to grow, according to a new report commissioned by Apple. … Continue reading Apple report finds steep increase in data breaches, ransomware
When the AlphV site went offline yesterday, rumors started. Now intel firm RedSense has tweeted that they can confirm it was a law enforcement takedown: Today, RedSense can confirm that #ALPHV aka #BlackCat ransomware gang’s site has been taken down by… Continue reading AlphV (BlackCat) leak site reportedly taken down by law enforcement
Brittany Toolis reports: As if battling cancer isn’t hard enough, now patients at UW’s Fred Hutchinson Cancer Center are being extorted. Last month, the Cancer Center experienced a data breach, exposing data for an unknown number of patients. Some of t… Continue reading Seattle cancer patients face blackmail threats after recent Fred Hutch data breach
Louisiana Medical Group settles after investigation reveals large cybersecurity breach affecting nearly 35,000 patients Today, the U.S. Department of Health and Human Services (HHS), Office for Civil Rights (OCR), announced a settlement with Lafourche … Continue reading HHS’ Office for Civil Rights Settles First Ever Phishing Cyber-Attack Investigation
On November 6, DataBreaches reported that Qlin threat actors claimed to have attacked Cardiovascular Consultants, Ltd. and dumped more than 205 GB of data. At the time, DataBreaches reported that CVC had not responded to inquiries, their privacy office… Continue reading Update: Cardiovascular Consultants Ltd. ransomware attack reportedly affected 500,000 patients, guarantors, and staff
Carly Page reports: Thousands of exposed servers are spilling the medical records and personal health information of millions of patients due to security weaknesses in a decades-old industry standard designed for storing and sharing medical images, res… Continue reading Millions of patient scans and health records spilling online thanks to decades-old protocol bug
GAO-24-105658 Published: Dec 04, 2023. Publicly Released: Dec 04, 2023. Fast Facts Federal agencies have made progress in preparing for and responding to cyber threats. For instance, agencies have improved their ability to detect, analyze, and handle i… Continue reading Cybersecurity: Federal Agencies Made Progress, but Need to Fully Implement Incident Response Requirements (GAO Report)
The Hacker News reports: The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warned of active exploitation of a high-severity Adobe ColdFusion vulnerability by unidentified threat actors to gain initial access to government servers. “… Continue reading Hackers Exploited ColdFusion Vulnerability to Breach Federal Agency Servers
Bill Toulas reports: Microsoft’s Threat Intelligence team issued a warning earlier today about the Russian state-sponsored actor APT28 (aka “Fancybear” or “Strontium”) actively exploiting the CVE-2023-23397 Outlook flaw to… Continue reading Russian hackers exploiting Outlook bug to hijack Exchange accounts
FirstPost reports: Hours after The Guardian report claimed that UK’s most hazardous nuclear site Sellafield has been hacked into by cyber groups closely linked to Russia and China, Britain on Monday said that it has no records or evidence to suggest th… Continue reading Britain dismisses report claiming Sellafield nuclear site hacking, says no malware exists on our system