DragonForce actors target SimpleHelp vulnerabilities to attack MSP, customers
Ransomware actor exploited RMM to access multiple organizations; Sophos EDR blocked encryption on customer’s network
Similar Posts
Japanese cancer hospital confirms breach; Qilin gang claims responsibility
Bys sStefanie Schappert reports: The Qilin ransomware group said it is responsible for the February 10th hack of a prestigious cancer treatment center in Japan, exposing the sensitive health information of 300,000 patients and leaving its hospital system “unusable.” The Utsunomiya Central Clinic (UCC) cancer treatment center first alerted the public to the ransomware attack on…
FBI ‘aware’ of Anchorage health clinic data breach as hackers claim 60K patients impacted
Bys sWill Courtney reports: Days after an anonymous hacker group claimed they had leaked an additional 50,000 Anchorage Neighborhood Health Center patient records, an FBI spokesperson confirmed Monday they are aware of the claim. “The FBI Anchorage Field Office is aware of the alleged data breach affecting the Anchorage Neighborhood Health Center and takes allegations of this nature……
PJobRAT Malware Campaign Targeted Taiwanese Users via Fake Chat Apps
Bys sAn Android malware family previously observed targeting Indian military personnel has been linked to a new campaign likely aimed at users in Taiwan under the guise of chat apps. “PJobRAT can steal SMS messages, phone contacts, device and app information, documents, and media files from infected Android devices,” Sophos security researcher Pankaj Kohli said in…
Google Chrome Can Now Auto-Change Compromised Passwords Using Its Built-In Manager
Bys sGoogle has announced a new feature in its Chrome browser that lets its built-in Password Manager automatically change a user’s password when it detects the credentials to be compromised. “When Chrome detects a compromised password during sign in, Google Password Manager prompts the user with an option to fix it automatically,” Google’s Ashima Arora, Chirag…
Scattered Spider Resurfaces With Financial Sector Attacks Despite Retirement Claims
Bys sCybersecurity researchers have tied a fresh round of cyber attacks targeting financial services to the notorious cybercrime group known as Scattered Spider, casting doubt on their claims of going “dark.” Threat intelligence firm ReliaQuest said it has observed indications that the threat actor has shifted their focus to the financial sector. This is supported by…
CISA Adds PaperCut NG/MF CSRF Vulnerability to KEV Catalog Amid Active Exploitation
Bys sThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a high-severity security vulnerability impacting PaperCutNG/MF print management software to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation in the wild. The vulnerability, tracked as CVE-2023-2533 (CVSS score: 8.4), is a cross-site request forgery (CSRF) bug that could