Beyond the kill chain: What cybercriminals do with their money (Part 4)
In the fourth of our five-part series, Sophos X-Ops explores threat actors’ real-world criminal business interests
Similar Posts
India: Servers of two city hospitals hacked; police register FIR
Bys s
The Times of India reports: New Delhi: Delhi Police has registered an FIR after the servers of two hospitals in north Delhi, Sant Parmanand Hospital in Civil Lines and NKS Super Speciality Hospital in Gulabi Bagh, were allegedly hacked. Patient data, financial records and administrative files were accessed during the breach, which took place…
FBI and Europol Disrupt Lumma Stealer Malware Network Linked to 10 Million Infections
Bys s
A sprawling operation undertaken by global law enforcement agencies and a consortium of private sector firms has disrupted the online infrastructure associated with a commodity information stealer known as Lumma (aka LummaC or LummaC2), seizing 2,300 domains that acted as the command-and-control (C2) backbone to commandeer infected Windows systems. “Malware like LummaC2 is deployed to…
Whitman Hospital & Medical Clinics In Colfax Suffers Cyber Attack
Bys s
Naomi Diaz reports: Colfax,Wash.-based Whitman Hospital and Medical Clinics’ internal electronic systems are down following a cyberattack. “If you have an appointment at the hospital or any of our clinics on Wednesday, March 5, 2025, please understand there may be delays, however, we remain open and here to care for you,” the hospital wrote in a March…
Khalil Center’s impressively rapid incident response
HHS’s public breach tool added a listing today that was submitted by the Khalil Foundation (DBA Khalil Center). The center describes itself as a psychological and spiritual community wellness center advancing the professional practice of psychology rooted in Islamic principles. They are covered by HIPAA. On December 22, they notified HHS that 1153 individuals had…
Bill raising the bar for class-action suits in data breach incidents advances
Bys s
Rural Radio reports: A measure that would raise the bar for filing class-action lawsuits in state courts against private entities that suffer a cybersecurity breach has received first round approval in the Nebraska Legislature. Lawmakers spent a considerable amount of floor debate Tuesday and today discussing LB 241, which would require willful, wanton, or gross…
The Trump Administration Accidentally Texted Me Its War Plans
Bys s
This is an absolutely mind-boggling breach. How could no one looking at the list of participants in a Signal chat not question what a reporter was doing in a war plans chat? Jeffrey Goldberg reports: The world found out shortly before 2 p.m. eastern time on March 15 that the United States was bombing Houthi…