top of page

February 29, 2024

BlackCat Hacker Gang focusing attacks on Healthcare sector

This group has ties to Russia and hacked Lehigh Valley Health network to lead nude breast concern patient photos online. Since December this group has reportedly attacked 70 different victims including Change Healthcare that has disrupted pharmacy and payment processing systems.

February 27, 2024

RMM Bug Exploitation for Connectwise

"This vulnerability allows an attacker to create their own administrative user on the ScreenConnect server, giving them full control over the server," said James Horseman, Horizon3.ai exploit developer, in a blog today that provides technical details on the auth bypass and indicators of compromise (IoC). "This vulnerability follows a theme of other recent vulnerabilities that allow attackers to reinitialize applications or create initial users after setup."

February 26, 2024

Microstrategy X account hacked

MicroStrategy's X account was compromised on Monday morning (Asia time). The hackers posted phishing messages promoting an airdrop of "MSTR token" and linked to a malicious website. According to on-chain sleuth ZachXBT, at least $440,000 may have been stolen.

February 26, 2024

Uhaul breach affects 67000 customers in Canada and the US

In the second attack similar to the one in 2022 compromised credentials caused illicit access to customer information stored by the company. ‘The data types that have been exposed in these customer records include full names, dates of birth, and driver’s license numbers.’ In standard fashion the organization has provided affected members credit monitoring services 

February 25, 2024

Colorado Public Defender office Ransomware attack delaying cases for 2+weeks

Files used by public defenders have been locked due to a ransomware attack that occurred approximately 2 weeks ago. Continuances and backlog mount as trials cannot proceed without information affected by the attack. 'The public defender’s office on Thursday denied a public records request from The Denver Post seeking more information on the breach, citing a broad exemption in the state’s open records rules for judicial agencies, which are not governed by the Colorado Open Records Act but rather by rules set by the Colorado Supreme Court.'

February 24, 2024

Change Healthcare Update

As of Friday Feb 24th - Change Healthcare has recommended organizations disconnect from their system until the cyber attack has been resolved. As of this writing it does not appear the issue is resolved. Conversations with a North American Change Healthcare Salesperson on Friday said the company has instructed its staff to staff off computers until the matter is resolved thus affecting not only consumer facing operations but also internal operations.

February 23, 2024

Omni Family Health thwarts cyber attack on its 140K patients

Clinical Systems such as NextGEN Electronic Medical Record and the systems patient portal were disabled as soon as bad actors were detected in the Omni Family Health system. These systems remained offline for 5 days while the organization dealt with the attempt and the EMR according to this article seems to still be offline.

February 23, 2024

Health and Human Services 'settles second ever Ransomware Cyber attack'

Healthcare organizations are under increasing pressure to secure Protected Health Information. With tightening reimbursements for services from their best payor- the US federal government its left many using antiquated technology stacks that yearn for upgrades. At Green Ridge Behavioral Health in Maryland the Office of Civil Rights enforced action for a breach involving 14K patient records. The punishment for succumbing to this ransomware attack is a $40,000 fine with promises to implement corrective actions.

February 22, 2024

Cyberattack cited as reason for delay in Cuba gasoline price hike

Cyberattack cited as reason for delay in Cuba gasoline price hike. "This decision is influenced by the occurrence of a cybersecurity incident in the computer systems for the marketing of fuels, the origin of which has been identified as a virus from abroad," prime Minister Granadillo said. It’s been reported fuel will remain at its current price. Should the increase have gone into effect the standard price for a 40 liter tank would be out of reach for those living on a state salary.

February 22, 2024

Change Healthcare taken offline due to a cyberattack

The company owned by United Healthcare has reported a cyberattack with little details. It’s reported on their website status page they took the site down as a precaution 

February 21, 2024

Lockbit ransomware gang aprehended

2 Russian Nationals who deployed Lockbit ransomware against companies and groups around the world have been aprehended. The group who targeted over 2000 victims worldwide received more than $120MM in ransom payments per the US Department of Justice.

bottom of page