Heart surgery device maker’s security bypassed, data encrypted and stolen

December 10, 2024 at 07:38AM Artivion reported a cybersecurity incident resembling a ransomware attack on November 21, 2024, resulting in data theft and file encryption. The company is investigating, has engaged external advisors, and is working to restore systems. The incident has disrupted operations but is not expected to impact finances significantly, aided by cyber … Read more

Radiant Capital $50 Million Heist Blamed on North Korean Hackers

December 10, 2024 at 05:00AM Radiant Capital was targeted by a North Korean threat actor in a $50 million heist on October 16. Malware infected developers’ devices, enabling fraudulent transactions during normal operations. The attack, linked to group UNC4736, started in September through a deceptive Telegram message and exploited various blockchain platforms before erasing evidence. … Read more

Ransomware attack hits leading heart surgery device maker

December 9, 2024 at 06:03PM Artivion experienced a ransomware attack on November 21, disrupting operations and forcing some systems offline. The company is investigating the incident, involving external advisors, and has reported data encryption and theft. While most operational disruptions have been addressed, additional costs are expected, and no ransom demands have yet been claimed. … Read more

Black Basta Ransomware Evolves with Email Bombing, QR Codes, and Social Engineering

December 9, 2024 at 01:18PM Black Basta ransomware is evolving its tactics, utilizing social engineering and various malware like Zbot and DarkGate since October 2024. The group employs email bombing, impersonation on Microsoft Teams, and QR codes to target users. Their ultimate aim includes credential harvesting and VPN file theft for further breaches. ### Meeting … Read more

Romanian energy supplier Electrica hit by ransomware attack

December 9, 2024 at 11:42AM Electrica Group is investigating an ongoing ransomware attack while ensuring that its critical systems remain unaffected. The company, which serves over 3.8 million customers, is collaborating with cybersecurity authorities to maintain electricity supply and protect data. Recent events include scrutiny of election vulnerabilities amidst widespread cyberattacks in Romania. **Meeting Takeaways: … Read more

Deloitte Responds After Ransomware Group Claims Data Theft

December 9, 2024 at 07:07AM Deloitte responded to claims by the ransomware group Brain Cipher, which alleges it stole over one terabyte of data. Deloitte stated the issue pertains to a single client’s external system, with no impacts on its network. The group has targeted various sectors and threatened to release stolen data unless paid. … Read more

Blue Yonder ransomware termites claim credit

December 8, 2024 at 10:10PM The Termite ransomware gang claimed responsibility for a ransomware attack on Blue Yonder, stealing 680GB of data. Blue Yonder’s operations were disrupted, affecting clients like Starbucks and UK grocery chains. Additionally, a Nigerian scammer received eight years in prison for a business email compromise scheme that stole over $6 million. … Read more

In Other News: Cloudflare Abuse, UK and EU Cybersecurity Reports, FBI Gen-AI Alert

December 6, 2024 at 08:36AM SecurityWeek’s summary highlights key cybersecurity stories, including a major US organization hacked by Chinese actors, FBI warnings about generative AI fraud, Stoli USA’s bankruptcy post-ransomware attack, UK and EU cybersecurity reports, Cloudflare service abuse, WAF configuration issues, new CISA resources, and spyware on a Russian programmer’s phone. ### Meeting Takeaways … Read more

British hospitals hit by cyberattacks still battling to get systems back online

December 5, 2024 at 07:31AM NHS trusts in Wirral and Liverpool are recovering from separate cyberattacks. NHS Wirral downgraded its incident status; systems are still being restored, causing longer wait times. Alder Hey Children’s Hospital confirmed a data breach, with attackers posting personal information online, while investigations are ongoing. Ransom payments are not anticipated. **Meeting … Read more

BT Group confirms attackers tried to break into Conferencing division

December 5, 2024 at 06:17AM BT Group confirmed an attempted attack by the Black Basta ransomware group on its BT Conferencing unit. The incident affected specific platform elements, which were quickly isolated, with no impact on live services. Black Basta claims to have stolen around 500 GB of outdated data, prompting an ongoing investigation. ### … Read more