Summary: This article discusses the surge in cyberattacks using the leaked LockBit code, targeting various victims globally. It also explores the rise of new ransomware groups that are using modified versions of the leaked LockBit code.
Threat Actor: LockBit and various ransomware groups using the leaked LockBit code.…
Date Reported: 2024-04-16 Country: France (FRA) Victim: Hôpital Simone Veil | Simone Veil Hospital | ch-cannes.fr Additional Information:
The Simone Veil Hospital in Cannes experienced a computer blackout since Tuesday, April 16, resulting in the cancellation of surgeries and appointments. It is suspected to be a cyberattack, although the hospital officially mentions an ongoing “technical incident.”…Summary: Global law firm Orrick Herrington & Sutcliffe has agreed to an $8 million settlement to resolve a proposed class action lawsuit filed against the firm after a cyberattack compromised the personal information of its clients, including healthcare sector clients and nearly 638,000 individuals.
Threat Actor: N/A Victim: Orrick Herrington & Sutcliffe | Orrick Herrington & Sutcliffe
Key Point :
Orrick Herrington & Sutcliffe has agreed to an $8 million settlement to resolve a proposed class action lawsuit filed against the firm in the aftermath of its cyberattack last year, which affected some health sector clients and nearly 638,000 individuals.…Update as of April 15:
The Blackjack hacker group reached out to Team82 following publication of this blog with some updates, in particular around Team82’s contention—based on our initial research from publicly available information published by Blackjack—that only around 500 sensor-gateways had been impacted by a cyberattack.…
ESET researchers have discovered an active espionage campaign targeting Android users with apps primarily posing as messaging services. While these apps offer functional services as bait, they are bundled with open-source XploitSPY malware. We have named this campaign eXotic Visit and have tracked its activities from November 2021 through to the end of 2023.…
Victim: Paducah Dermatology Country : US Actor: medusa Source: http://medusaxko7jxtrojdkxo66j7ck4q5tgktf7uqsqyfry4ebnxlcbkccyd.onion/detail?id=53474aff274038ebe3af8d31ca13b88b Discovered: 2024-04-08 08:39:00.870218
Description: Paducah Dermatology is a hospital & health care company. Paducah Dermatology corporate office is located in 3101 Parisa Dr Ste 402, Paducah, Kentucky, 42003, United States and has 19 employees. The total amount of data leakage is 15.04 GB …
Date Reported: 2024-03-31 Country: USA Victim: NorthBay VacaValley Hospital | northbay.org Additional Information:
The NorthBay VacaValley Hospital in Vacaville had to turn away patients due to a cyberattack that caused a disruption in its computer systems. Patients were unable to be registered or access their medical records, and patient Linda Sperow testified to the difficulty in obtaining information.…____________________ Summary : The federal government is proposing financial incentives and penalties to encourage the health sector to improve cybersecurity, but industry groups are divided on the effectiveness of this approach.
Key Point : 🔒 Proposed federal budget includes $1.3 billion in financial help for hospitals to invest in cybersecurity over several years.…
Article Summary: 🔹 The American Hospital Association is advocating for Change Healthcare to be solely responsible for notifying patients in the event of a breach. 🔹 HHS OCR is investigating the cyberattack on Change Healthcare and UnitedHealth Group to determine if PHI was compromised. 🔹 AHA is seeking clarification from HHS OCR on breach notification duties and responsibilities.…
Imagine a hospital’s email system suddenly filled with thousands of spam messages sent by bots. The unexpected traffic degrades network server performance, and the IT administrator is flooded with service requests from users.…
Whether you want to call them “catfishing,” “pig butchering” or just good ‘old-fashioned “social engineering,” romance scams have been around forever.
I was first introduced to them through the MTV show “Catfish,” but recently they seem to be making headlines as the term “pig butchering” enters the public lexicon.…
Healthcare , HIPAA/HITECH , Industry Specific
Facing AHA Lawsuit, HHS Tempers 2022 Warning About Tracking IP Addresses, Other PHI Marianne Kolbasuk McGee (HealthInfoSec) • March 19, 2024
HHS OCR has revised its previous guidance pertaining to the use of online trackers by HIPAA-regulated entities in patient portals and other websites.…NHS Dumfries and Galloway, part of the Scottish healthcare system, announced on Friday it was the target “of a focused and ongoing cyber attack.”
The nature of the incident has not yet been disclosed, although the health board announced there “may be some disruption to services as a result of this situation.”…
Authored by ZePeng Chen and Wenfeng Yu
McAfee Mobile Research Team has observed an active scam malware campaign targeting Android users in India. This malware has gone through three stages. The first one is the development stage, from March 2023 to July 2023, during which a couple of applications were created each month.…
PRESS RELEASE
NEW YORK and ORLANDO, Fla., March 12, 2024/PRNewswire/ —Claroty, the cyber-physical systems (CPS) protection company, released today at the annual HIMSS24 conference a new report that uncovered concerning data about the security of medical devices connected to healthcare organization networks such as hospitals and clinics.…
PRESS RELEASE
NEW YORK and ORLANDO, Fla. — March 12, 2024 — Claroty, the cyber-physical systems (CPS) protection company, today announced at the annual HIMSS24 conference the release of the
Advanced Anomaly Threat Detection (ATD) Module within the Medigate Platform from Claroty. The new capability provides healthcare organizations with the clinical context to properly identify, assess, and prioritize threats to connected medical devices, IoT, and building management systems (BMS).…
The U.S. Department of Health and Human Services is investigating whether protected health information was stolen in a ransomware attack that hit UnitedHealthcare Group (UHG) subsidiary Optum, which operates the Change Healthcare platform, in late February.
This investigation is coordinated by HHS’ Office for Civil Rights (OCR), which enforces the Health Insurance Portability and Accountability Act (HIPAA) rules that protect patients’ health information from being disclosed without their knowledge or consent.…
Healthcare has long been a primary target for ransomware attacks. This is not changing and is not likely to change. Claroty/Team82’s State of CPS Security – Healthcare 2023 discusses the reasons.
Healthcare comprises a critical industry combining a large-scale use of converged IT and OT with a huge quantity of disparate OT devices dependent on IT control delivered over WiFi – and a very low tolerance for disruption.…