July 5, 2024 at 01:03PM The aftermath of Qilin’s ransomware attack on Synnovis caused widespread disruptions in medical procedures across London hospitals. One of the most affected individuals was Johanna Groothuizen, who had to undergo a last-minute change in her surgery, ultimately resulting in a simple mastectomy instead of the planned skin-sparing mastectomy. The cyberattack’s … Read more
July 5, 2024 at 05:56AM Cybereason reported that the GootLoader malware, linked to threat actor Hive0127, continues to evolve, with the latest version being GootLoader 3. It is distributed via SEO poisoning and serves as a conduit for delivering various payloads. The attackers have also unleashed their own command-and-control tool, expanding their market for financial … Read more
July 5, 2024 at 12:26AM Cybersecurity researchers discovered a new botnet, Zergeca, capable of DDoS attacks. It supports six attack methods, proxying, scanning, self-upgrading, reverse shell, and more. Notably, it uses DNS-over-HTTPS for C2 communications and continuous development. Linked to previous botnet activity, it targeted Canada, Germany, and the U.S. with ACK flood DDoS attacks. … Read more
July 3, 2024 at 08:41AM Patelco Credit Union, serving 500,000 customers, faced a ransomware attack, impacting its online banking, mobile app, and call center. Electronic transactions are unavailable and restoration efforts are ongoing. Patelco emphasized secure system restoration, cooperation with cybersecurity experts, regulators, and law enforcement. Customer reimbursement for late payment fees is assured. Based … Read more
July 2, 2024 at 09:22AM Wise and Affirm acknowledge the impact of the recent Evolve Bank data breach on their customers. The cybercriminals gained access to customer and financial technology partner information, affecting customers who used both companies’ services. Evolve clarified that the ransomware group LockBit was behind the attack, compromising various personal and banking … Read more
June 28, 2024 at 02:04PM Microsoft’s corporate infrastructure hack by the Russian government continues to have far-reaching impact as it’s revealed that customers’ emails were also stolen by the Midnight Blizzard hackers. The company is notifying affected customers and providing a secure portal for them to review the compromised emails. The hacking group seems to … Read more
June 28, 2024 at 12:51PM The North Korea-linked threat actor Kimsuky has been using a new malicious Google Chrome extension, codenamed TRANSLATEXT, to conduct cyber espionage targeting South Korean academia. This extension gathers sensitive information and is designed to bypass security measures, capture browser screenshots, and exfiltrate stolen data. Kimsuky is known for orchestrating cyber … Read more
June 27, 2024 at 07:06PM The BlackSuit ransomware gang cyberattacked KADOKAWA corporation, demanding ransom in exchange for not publishing stolen data, which includes employee details, financial information, and business plans. The Japanese media conglomerate’s operations, including Niconico services, continue to be impacted. BlackSuit, a rebrand of the Royal ransomware operation, has been linked to numerous … Read more
June 27, 2024 at 06:10PM The Seattle Public Library is slowly restoring services following a ransomware attack, with plans to reinstate access to patron accounts, the library catalog, and other vital resources. Cyberattacks on public institutions continue to pose a threat, prompting the FCC to approve a $200 million Schools and Libraries Cybersecurity Pilot Program … Read more
June 24, 2024 at 09:57AM The Los Angeles County Department of Health Services (DHS) revealed a data breach resulting from a push notification spamming attack on an employee’s Microsoft 365 account. Personal information may have been compromised, including names, addresses, Social Security numbers, and medical data. The DHS took immediate action to mitigate the breach … Read more