Cyber Security News

Analyzing dark web forums to identify key experts on e-crime

Ever wonder what happens when attackers don’t break the rules—they just follow them better than we do? When systems work exactly as they’re built to, but that “by design” behavior quietly opens the door to risk? This week brings stories that make you stop and rethink what’s truly under control. It’s not always about a…

Identity-based attacks are on the rise. Attacks in which malicious actors assume the identity of an entity to easily gain access to resources and sensitive data have been increasing in number and frequency over the last few years. Some recent reports estimate that 83% of attacks involve compromised secrets. According to reports such as the…

The Brussels Criminal Court has sentenced a Russian hacker to 7 years in prison. His former partner is sentenced to 5 years in prison, of which 1 year is suspended. The couple used the malicious software Crylock to remotely block computer files and demand ransom. In this way, they earned millions of euros. It is…

Investing reports: Switzerland confirmed Monday that a cyberattack on the non-profit health foundation Radix has affected the federal administration. According to Swiss federal authorities, the attack involved both the theft and encryption of data. Some of this information has already been published on the dark web following the breach. The statement noted that Radix counts…

When Cybernews published an article about a 16 billion credentials leak, some of us strongly criticized the article as irresponsible and misleading journalism.  Although some people have tried to suggest that the Cybernews article had some value in highlighting infostealers, the article was so riddled with falsehoods and misleading statements that the confusion and misunderstandings…

Isaac Callan and Colin D’Mello report that Ontario’s health minister is ordering atHome, a provincial agency, to immediately notify approximately 200,000 patients whose data may have been breached in a vendor’s cyberattack in March. There appears to have been a breakdown in what should have happened, as the Health Minister reported that atHome had failed…

Eric Priezkalns reports: A business student who was interning at Société Générale, a leading multinational bank headquartered in France, is believed to have fed information to SIM swappers who stole from 50 customers of the bank, reports Le Parisien. The intern’s arrest prompted officers from France’s fraud police (La Brigade des Fraudes aux Moyens de Paiement,…

Finally, finally, FINALLY:  exposed patient files from the Bolton Walk-In Clinic in Ontario have been secured. Now that the data is locked down, we can reveal more details about a seriously frustrating data leak that remained unsecured for at least 10 months while the clinic ignored all our notifications and alerts. It’s a story that…

Attacks on revenue cycle management (RCM) firms and debt collection firms often provide criminals with a wealth of personal and protected health information because successfully compromising one billing vendor may give access to the sensitive data of numerous covered entities or clients. Horizon Healthcare RCM (“Horizon”) in Indiana is the latest RCM to disclose that…