Threat actors are increasingly targeting inadequately secured Microsoft SQL (MS SQL) servers to deliver Cobalt Strike and a specific ransomware variant known as FreeWorld. This concerning trend has been highlighted by cybersecurity firm Securonix, which has labeled the ongoing operation as DB#JAMMER. This campaign is notable for its sophisticated use…
The recent investigation by Mandiant, a cybersecurity arm of Google, has unveiled significant insights regarding the breach incidents attributed to a hacker identified as UNC5537. Austin Larsen, a threat intelligence analyst at Mandiant, characterizes this hacker as “one of the most consequential threat actors of 2024.” The repercussions of these…
In a recent address at the HIMSS Healthcare Cybersecurity Forum, cybersecurity experts John Riggi and Richard Staynings emphasized the significant cybersecurity threats that arise from third-party vendors and associated organizations. Riggi, a former FBI special agent and a national advisor for Cybersecurity and Risk at the American Hospital Association, highlighted…
The FBI has raised alarms about a rising trend of dual ransomware attacks targeting organizations, a phenomenon that has been increasingly observed since July 2023. These coordinated attacks involve the deployment of multiple ransomware variants against a single victim, with notable malware strains including AvosLocker, Diamond, Hive, Karakurt, LockBit, Quantum,…
Securing supply chains against complex cyberattacks has never been more crucial as they serve as essential conduits for industries ranging from healthcare to manufacturing, while also being appealing targets for cybercriminals. The connected nature of contemporary business ecosystems has made third-party vendors key players in maintaining sensitive systems. However, many…
LockBit Ransomware Leader Uncovered: Dmitry Khoroshev Implicated in Major Cybercrime Operation In a significant development within the cybersecurity landscape, the U.K.’s National Crime Agency (NCA) has identified and sanctioned Dmitry Yuryevich Khoroshev, a 31-year-old national from Russia, as the mastermind behind the LockBit ransomware operation. This revelation has sparked a…
Black Basta Ransomware Targets Critical Infrastructure Globally The Black Basta ransomware-as-a-service (RaaS) group has made a significant impact since its inception in April 2022, successfully compromising over 500 private and critical infrastructure entities across North America, Europe, and Australia. Recent joint advisories released by leading cybersecurity authorities, including the Cybersecurity…
Plastic Surgery Clinic Faces $500K HIPAA Fine Following Ransomware Attack A South Dakota-based plastic surgery clinic has recently found itself at the center of a discussion around cybersecurity and regulatory compliance after paying a ransom of $53,000 to regain access to critical data locked by a ransomware attack. Dr. James…
North Korean State-Sponsored Group Partners with Ransomware Actors in Recent Cyberattack A recent report from Palo Alto Networks’ Unit 42 highlights alarming developments in the cybersecurity landscape, revealing a collaboration between the North Korean state-sponsored threat group known as Jumpy Pisces and the financially motivated Play ransomware group. This incident…
