June 10, 2024 at 11:32PM Unknown financially motivated crime crew “UNC5537” has stolen a substantial amount of data from Snowflake customers by using stolen credentials. The crew may have ties to “Scattered Spider” and has targeted multiple organizations by compromising contractor systems. The theft was enabled by the absence of multi-factor authentication and the use … Read more
May 10, 2024 at 02:56PM Ascension, a major U.S. healthcare network, is diverting ambulances due to a suspected ransomware attack causing disruptions and system outages. MyChart, phone systems, and systems for ordering tests and medications are offline. Non-emergent procedures are on hold, and the network is working with experts to address the attack, suspected to … Read more
May 10, 2024 at 10:24AM Ascension, a major US healthcare system, is dealing with a significant cyberattack affecting various systems, leading to disruptions and the implementation of downtime procedures. The incident, presumed to be a ransomware infection, has prompted the activation of emergency measures and the diversion of medical services. The company is working with … Read more
May 9, 2024 at 03:21PM Ascension, a leading healthcare organization in the US, has detected a cybersecurity event affecting its network. The disruption has led to clinical operations being impacted, with a potential involvement of ransomware. The incident is part of a string of cyber attacks on the healthcare industry, prompting calls for stronger cyber … Read more
May 8, 2024 at 05:33PM Ascension, a major U.S. nonprofit health system with 140 hospitals and 40 senior care facilities across 19 states and the District of Columbia, has detected a cybersecurity event, prompting the organization to advise business partners to suspend connections to its systems. The incident has disrupted clinical operations, and an investigation … Read more
January 11, 2024 at 12:35PM Mandiant’s investigation of the takeover of its X account revealed a successful brute-force attack due to a change in two-factor authentication policy. The use of SMS-based 2FA was removed, leaving accounts vulnerable. The compromise led to a scam pushing CLICKSINK drainer-as-a-service, highlighting the rise of such attacks targeting valuable cryptocurrency … Read more