Unpatched Citrix NetScaler Systems Targeted in Suspected Ransomware Attack Recent developments in cybersecurity have revealed that unpatched Citrix NetScaler systems facing the internet are being exploited by unidentified threat actors, likely in the context of a ransomware operation. Cybersecurity firm Sophos has identified this activity cluster as STAC4663, which is…
The Evolving Threat Landscape: AI in Cybercrime The rapid advancements in artificial intelligence (AI) are reshaping the landscape of social engineering attacks, creating unprecedented vulnerabilities for organizations worldwide. Cybercriminals are now leveraging AI to produce increasingly sophisticated phishing emails and deepfake videos that convincingly mimic trusted colleagues and executives. By…
The U.S. Department of Justice recently announced the indictment of two Iranian nationals linked to the infamous SamSam ransomware attacks. This enforcement action underscores the ongoing threat posed by cybercriminals targeting crucial sectors within the United States. Faramarz Shahi Savandi, 34, and Mohammad Mehdi Shah, 27, face multiple charges, as…
As the cybersecurity landscape evolves, medium-sized businesses often underestimate their potential vulnerability. However, recent data reveals that these organizations are increasingly targeted by cybercriminals, contrary to the belief that they are too small to attract attention. High-profile breaches involving companies such as Sony and Equifax dominate the headlines, yet the…
Health records from the Manage My Health platform have been compromised in a recent ransomware attack, impacting numerous patients who are now left in the dark about the status of their information. The platform’s website has repeatedly crashed, and its helpline is experiencing an overload of inquiries, leading to significant…
Security researchers have identified two distinct malware campaigns targeting systems through phishing strategies, one distributing both the Ursnif data-stealing trojan and GandCrab ransomware, while the other focuses solely on Ursnif. These threats originate from two separate cybercriminal groups but exhibit several operational similarities. Both campaigns initiate through phishing emails containing…
A significant data breach has emerged concerning ManageMyHealth, a trans-Tasman health information portal, leaving many of its 1.85 million registered patients anxious about the security of their sensitive information. The breach, which reportedly involved a ransomware group known as Kazu, has raised alarms about the potential exposure of around 108…
Fraud Management & Cybercrime, Healthcare, Industry Specific Ransomware Group Qilin Claims to Have Stolen 852 GB of Data from a Healthcare Provider Marianne Kolbasuk McGee (HealthInfoSec) • January 5, 2026 Covenant Health is alerting nearly 480,000 patients about a data breach incident in 2025. (Image: Covenant Health) A significant data…
Cybercriminals increasingly exploit newly disclosed vulnerabilities, making this one of the primary vectors for threats such as crypto-mining, phishing, and ransomware. Recently, a critical vulnerability in the Oracle WebLogic Server, a widely utilized enterprise application platform, has been actively targeted in the wild. Researchers have identified this exploit as distributing…
