Beyond the kill chain: What cybercriminals do with their money (Part 1)
Sophos X-Ops investigates what financially motivated threat actors invest their ill-gotten profits in, once the dust has settled
Similar Posts
HCRG Care’s lawyers claimed an injunction issued in a “private” hearing required us to remove two posts. We didn’t comply.
Bys sOccasionally, entities in other countries try to take legal action against DataBreaches.net to chill or censor this site’s reporting on their breaches. None of them have prevailed, in part due to the protections we have here under the First Amendment, and in part to the legal defense afforded this site by Covington and Burling. This…
A big finish to 2025 in December’s Patch Tuesday
Bys sA month with no Critical-severity Windows bugs is overshadowed by a mass of Mariner mop-up Categories: X-ops Tags: threat research, featured, Microsoft, Patch Tuesday, zero days
Whitman Hospital & Medical Clinics In Colfax Suffers Cyber Attack
Bys sNaomi Diaz reports: Colfax,Wash.-based Whitman Hospital and Medical Clinics’ internal electronic systems are down following a cyberattack. “If you have an appointment at the hospital or any of our clinics on Wednesday, March 5, 2025, please understand there may be delays, however, we remain open and here to care for you,” the hospital wrote in a March…
New Reports Uncover Jailbreaks, Unsafe Code, and Data Theft Risks in Leading AI Systems
Bys sVarious generative artificial intelligence (GenAI) services have been found vulnerable to two types of jailbreak attacks that make it possible to produce illicit or dangerous content. The first of the two techniques, codenamed Inception, instructs an AI tool to imagine a fictitious scenario, which can then be adapted into a second scenario within the first…
Behavioral Health Resources of Washington state updates its data breach disclosure
Bys sOn January 17, Behavioral Health Resources (“BHR”) notified the U.S. Department of Health and Human Services (HHS) of a reportable breach, but not yet having determined the number affected, they used “501” as a placeholder. They also published a preliminary notice on their website. That notice indicated that on or about November 20, 2024, they…
Nova Scotia Power hit by cyberattack, critical infrastructure targeted, no outages reported
Bys sThe Economic Times reports: Utilities under fire: Nova Scotia Power cyberattack raises alarm Nova Scotia Power and its parent company, Emera, are scrambling to contain the fallout of a cyberattack on critical infrastructure that disrupted IT systems but spared physical operations. The cybersecurity breach came to light on April 25, when the utility discovered unauthorized…