Collaborate Disseminate
Following up on President Biden’s recent executive order and the Justice Department’s notice of proposed rulemaking, CISA has issued the following: PROPOSED SECURITY REQUIREMENTS FOR RESTRICTED TRANSACTIONS Pursuant to Exec. Order 14117, Pr… Continue reading CISA: Proposed Security Requirements for Restricted Transactions Pursuant to Exec. Order 14117
U.S. Attorney’s Office, Northern District of Illinois, June 14: CHICAGO — Two men have been charged in federal court in Chicago with operating “Empire Market,” a dark web marketplace that enabled users to anonymously buy and sell more than $430 m… Continue reading Owners of “Empire Market” Charged in Chicago With Operating $430 Million Dark Web Marketplace
Brian Krebs reports: A 22-year-old man from the United Kingdom arrested this week in Spain is allegedly the ringleader of Scattered Spider, a cybercrime group suspected of hacking into Twilio, LastPass, DoorDash, Mailchimp, and nearly 130 other organiz… Continue reading Alleged Boss of ‘Scattered Spider’ Hacking Group Arrested
On June 12, BreachForums reappeared on clearnet and Tor. The owner — or someone with access to the forum owner’s account — interacted a bit in the ShoutBox and posted an announcement: Hello BreachForums users! Some wild stuff has gone… Continue reading BreachForums back online — or it is a honeypot? (UPDATED)
The Perry Johnson & Associates (PJ&A) data breach was the biggest reported breach involving protected health information in 2023, with more than 13 million patients affected1. Now WBEZ in Chicago reports that there is a federal criminal investi… Continue reading Federal criminal investigation involving Perry Johnson & Associates data breach
Something seems to be up — or down, to be more accurate. BreachForums clearnet and onion sites are down, with the clearnet site returning a “502- Bad Gateway” response. A WhoIs lookup for BreachForums.st shows the name servers as ddos… Continue reading Developing: BreachForums down, ShinyHunters’ and forum Telegram channels deleted?
Michael Kan reports: April’s cyberattack on internet service provider Frontier Communications enabled hackers to steal Social Security numbers for 750,000 users. In a data breach notice sent to Maine’s attorney general, the ISP says the incident … Continue reading Frontier Communications Hack Ensnares 750,000 Customers, SSNs Stolen
May 30, 2024 HC3: Analyst Note TLP:CLEAR Report: 20240530120 Executive Summary A Distributed-Denial-of-Service (DDoS) attack is a type of cyber attack in which an attacker uses multiple systems, often referred to as a botnet, to send a high volume of t… Continue reading HC3: Analyst Note: Healthcare Sector DDoS Guide
FBI Cyber Division Assistant Director Bryan Vorndran on June 5 highlighted the Bureau’s “ongoing disruption” of the LockBit ransomware group and its affiliates, and urged potential victims to contact the Bureau’s Internet Crime Complaint Center (IC3). … Continue reading FBI Cyber Lead Urges Potential LockBit Victims to Contact Internet Crime Complaint Center
Denis Campbell and Dan Milmo report: A cyber-attack thought to have been carried out by a Russian group has forced London NHS hospitals to resurrect long-discarded paper records systems in which porters hand-deliver blood test results because IT networ… Continue reading Update: London NHS hospitals revert to paper records after cyber-attack