Government, Groups and Insurance - Information Management Today

Australian government announced sanctions for Medibank hacker

Security Affairs

JANUARY 23, 2024

The Australian government announced sanctions for a member of the REvil ransomware group for the Medibank hack that occurred in 2022. The Australian government announced sanctions for Aleksandr Gennadievich Ermakov (aka GustaveDore, aiiis_ermak, blade_runner, JimJones), a Russian national who is a member of the REvil ransomware group.

Government

Government Insurance Ransomware Data breaches

Iran-linked APT group Pioneer Kitten sells access to hacked networks

Security Affairs

SEPTEMBER 1, 2020

Iran-linked APT group Pioneer Kitten is now trying to monetize its efforts by selling access to some of the networks it has hacked to other hackers. Iran-linked APT group Pioneer Kitten, also known as Fox Kitten or Parisite, is now trying to monetize its efforts by selling access to some of the networks it has hacked to other hackers.

Access

Access Financial Services Retail Insurance

BlackCat Ransomware Group Implodes After Apparent $22M Payment by Change Healthcare

Krebs on Security

MARCH 5, 2024

healthcare giant Change Healthcare has made a $22 million extortion payment to the infamous BlackCat ransomware group (a.k.a. As part of that action, the government seized the BlackCat website and released a decryption tool to help victims recover their systems. After a much-promoted attack on the government of Fulton County, Ga.,

Ransomware

Ransomware Insurance Government IT

Webinars

Automation, Evolved: Your New Playbook For Smarter Knowledge Work

MORE WEBINARS

SilverTerrier gang uses COVID-19 lures in BEC attacks against healthcare, government organizations

Security Affairs

MAY 9, 2020

Nigerian cyber gang SilverTerrier, specialized in BEC attacks, used COVID-19 lures in recent attacks on healthcare and government organizations. 30), we have observed three SilverTerrier actors/groups launch a series of 10 COVID-19 themed malware campaigns.” “Over the past 90 days (Jan. ” continues the report.

Government

Government Energy and Utilities Insurance Phishing

TA505 group updates tactics and expands the list of targets

Security Affairs

AUGUST 28, 2019

Recent campaigns show t hreat actors behind the Dridex and Locky malware families , the TA505 group, have updated tactics and expanded its target list. Trend Micro revealed that the TA505 group that is behind the Dridex and Locky malware families continue to make small changes to its operations. ” continues the report.

e-Delivery

e-Delivery Insurance Retail Government

Ransomware Victims That Pay Up Could Incur Steep Fines from Uncle Sam

Krebs on Security

OCTOBER 1, 2020

federal government if the crooks who profit from the attack are already under economic sanctions, the Treasury Department warned today. government, they still can be fined either way, said Ginger Faulk , a partner in the Washington, D.C. Image: Shutterstock. jurisdiction) and making it a crime to transact with them.

Ransomware

Ransomware Insurance Risk Government

Previously undetected Earth Longzhi APT group is a subgroup of APT41

Security Affairs

NOVEMBER 15, 2022

Trend Micro reported that the Earth Longzhi group, a previously undocumented subgroup of APT41, targets Ukraine and Asian Countries. The experts attributed the attacks to a new subgroup of the China-linked APT41 group, tracked as Earth Longzhi. The tool developers and campaign operators share the tools with their collaborator groups.”

Archiving

Archiving Passwords Metadata Insurance

Riding the State Unemployment Fraud ‘Wave’

Krebs on Security

MAY 23, 2020

When a reliable method of scamming money out of people, companies or governments becomes widely known, underground forums and chat networks tend to light up with activity as more fraudsters pile on to claim their share. Agari said this group has been filing hundreds of successful claims, all effectively using the same email address.

Insurance

Insurance Government Personal data Communications

Group-IB presents its annual report on global threats to stability in cyberspace

Security Affairs

NOVEMBER 29, 2019

Group-IB, has analyzed key recent changes to the global cyberthreat landscape in the “Hi-Tech Crime Trends 2019/2020” report. Group-IB , a Singapore-based cybersecurity company that specializes in preventing cyberattacks, has analyzed key recent changes to the global cyberthreat landscape.

IT

IT Military Cybersecurity Phishing

Dark Overlord hacking crew publishes first batch of confidential 9/11 files

Security Affairs

JANUARY 6, 2019

The Dark Overlord hacking group claims to have stolen a huge trove of documents from the British insurance company Hiscox, Hackers stole “hundreds of thousands of documents,” including tens of thousands files related to the 9/11 terrorist attacks. “What’s the takeaway? . “ There’s five layers to go.

Insurance

Insurance Data breaches Government Sales

FBI, CISA, HHS warn of targeted ALPHV/Blackcat ransomware attacks against the healthcare sector

Security Affairs

FEBRUARY 28, 2024

. “This trend is believed to be a response to the encouragement from ALPHV Blackcat administrators, who urged affiliates to focus their efforts on hospitals following operational actions against the group and its infrastructure in early December 2023.” reads the press release. “To

Ransomware

Ransomware Government Insurance Manufacturing

Greylock McKinnon Associates data breach exposed DOJ data of 341650 people

Security Affairs

APRIL 8, 2024

Greylock McKinnon Associates (GMA) provides expert economic analysis and litigation support to a diverse group of domestic and international clients in the legal profession, the business community, and government agencies, including the Department of Justice (DoJ).

Data breaches

Data breaches Insurance Cybersecurity Government

Texas Tech University data breach impacted 1.4 million individuals

Security Affairs

DECEMBER 17, 2024

The ransomware group claimed the theft of 2.6 Texas Tech University is notifying individuals whose information may be involved in this incident and out of an abundance of caution in offering them access to complimentary credit monitoring services. terabytes of data, including patient data, medical research, and a large set of SQL databases.

Data breaches

Data breaches Ransomware Insurance Access

A cyberattack on Kuwait Health Ministry impacted hospitals in the country

Security Affairs

SEPTEMBER 27, 2024

In a press statement, the Ministry said that systems have been restored to their backups including systems at Kuwait Cancer Control Center and administrative systems, like the health insurance and expatriate check-up systems.” At this time, no ransomware group has taken credit for the cyber incident.

Insurance

Insurance Ransomware Government Security

US DoJ charges Iranian hackers for attacks on US satellite companies

Security Affairs

SEPTEMBER 18, 2020

. “The defendants at one time possessed a target list of over 1,800 online accounts, including accounts belonging to organizations and companies involved in aerospace or satellite technology and international government organizations in Australia, Israel, Singapore, the United States, and the United Kingdom.”

Government

Government Insurance Phishing Security

Norton Healthcare disclosed a data breach after a ransomware attack

Security Affairs

DECEMBER 9, 2023

The compromised information varied for each person and could have included: name, contact information, Social Security Number, date of birth, health information, insurance information, and medical identification numbers. On May 25, 2023, the AlphV/ BlackCat group claimed responsibility for the attack.

Data breaches

Data breaches Ransomware Insurance Access

Lockbit ransomware attack on MCNA Dental impacts 8.9M individuals

Security Affairs

MAY 29, 2023

MCNA Dental is one of the largest US dental care and oral health insurance providers. The security breach exposed the personal information of current or former provider of dental/orthodontic care to members of certain state Medicaid and Children’s Health Insurance Programs, for which MCNA provides dental benefits and services.

Ransomware

Ransomware Data breaches Insurance Access

US pharmacy outage caused by Blackcat ransomware attack on Optum Solutions

Security Affairs

FEBRUARY 27, 2024

A BlackCat ransomware attack hit UnitedHealth Group subsidiary Optum causing an outage impacting the Change Healthcare payment exchange platform. A ransomware attack hit the UnitedHealth Group subsidiary Optum leading to an outage impacting the Change Healthcare payment exchange platform. ” reads the Reuters.

Ransomware

Ransomware Government Insurance Manufacturing

Security Blueprints of Many Companies Leaked in Hack of Swedish Firm Gunnebo

Krebs on Security

OCTOBER 28, 2020

In March 2020, KrebsOnSecurity alerted Swedish security giant Gunnebo Group that hackers had broken into its network and sold the access to a criminal group which specializes in deploying ransomware. The company has operations in 25 countries, more than 4,000 employees, and billions in revenue annually.

Security

Security Ransomware Agriculture Cybersecurity

The State of Maine disclosed a data breach that impacted 1.3M people

Security Affairs

NOVEMBER 12, 2023

The Government organization disclosed a data breach that impacted about 1.3 The software vulnerability was exploited by a group of cybercriminals and allowed them to access and download files belonging to certain agencies in the State of Maine between May 28, 2023, and May 29, 2023.” million individuals. million Genworth 2.5

Data breaches

Data breaches Insurance Education Cybersecurity

Delaware County, Pennsylvania, opted to pay 500K ransom to DoppelPaymer gang

Security Affairs

NOVEMBER 30, 2020

“Sources said the county is in the process of paying the $500,000 ransom as it’s insured for such attacks.” Early November, the DoppelPaymer ransomware disrupted IT operations in the territory of Nunavut (Canada), all government services requiring access to electronic data were impacted. Pierluigi Paganini.

Computer and Electronics

Computer and Electronics Ransomware Insurance Encryption

First American Financial Pays Farcical $500K Fine

Krebs on Security

JUNE 18, 2021

The SEC says First American derives nearly 92 percent of its revenue from its title insurance segment, earning $7.1 Title insurance protects homebuyers from the prospect of someone contesting their legitimacy as the new homeowner. Title insurance is not mandated by law, but most lenders require it as part of any mortgage transaction.

Insurance

Insurance Risk Financial Services Mining

Ransomware Bites Dental Data Backup Firm

Krebs on Security

AUGUST 29, 2019

-based PerCSoft is a cloud management provider for Digital Dental Record (DDR), which operates an online data backup service called DDS Safe that archives medical records, charts, insurance documents and other personal information for various dental offices across the United States. ” Read the full ProPublica piece here. .

Ransomware

Ransomware Insurance Encryption Cloud

City of Dallas has set a budget of $8.5 million to mitigate the May Royal ransomware attack

Security Affairs

SEPTEMBER 23, 2023

MILES/CBS NEWS TEXAS The Royal ransomware group is behind the attack and threatens to publish stolen data if the City will not meet its ransom demand. Once obtained access to the City’s network, the group performed reconnaissance and information-gathering activities using legitimate third-party remote management tools.

Ransomware

Ransomware Encryption Systems administration Cybersecurity

The Financial Dynamics Behind Ransomware Attacks

Security Affairs

JUNE 18, 2024

In some cases, attackers are even leveraging the threat of regulatory actions or causing cyber insurance policies to be rendered moot by reporting lapses in security on the part of the victim to regulators and insurers. In fact, the cost to victims from ransomware attacks is estimated to reach $265 billion (USD) annually by 2031.

Ransomware

Ransomware Insurance Cybersecurity B2B

La Porte County finally opted to pay $130,000 Ransom

Security Affairs

JULY 15, 2019

On July 6, a ransomware attack brought down government computer systems at La Porte County, Indiana, finally, the county decided to pay $130,000 ransom. For at least three days, government systems were not working forcing the County officials to evaluate the option to pay the ransom. ” reported the WSBT.

Ransomware

Ransomware Insurance Government Sales

From networking to knowledge: The impact of Collibra User Groups

Collibra

MARCH 26, 2025

This is why we offer certified Data Citizen User Groups in the Collibra Community to keep the conversation and inspiration going among all of you our customers. What are Data Citizens User Groups? Our Data Citizen User Groups are interactive, real-time opportunities for our customers to connect.

Financial Services

Financial Services Insurance Education Government

26 Cyber Security Stats Every User Should Be Aware Of in 2024

Security Affairs

FEBRUARY 8, 2024

Cyber Insurance: US cyber insurance premiums soared by 50% in 2022, reaching $7.2 Cyber Security Spending: Global cyber security spending is projected to reach $172 billion in 2024, reflecting the increasing prioritization of cyber security by businesses and governments worldwide. million, up 15% in three years.

Security

Security Phishing IoT Ransomware

US CISA report shares details on web shells used by Iranian hackers

Security Affairs

SEPTEMBER 16, 2020

According to the CISA’s report , Iranian hackers from an unnamed APT group are employing several known web shells, in attacks on IT, government, healthcare, financial, and insurance organizations across the United States. A web shell is a code, often written in typical web development programming languages (e.g.,

Passwords

Passwords Access Insurance Encryption

Ransomware attack on Johnson Controls may have exposed sensitive DHS data

Security Affairs

OCTOBER 1, 2023

Immediately after detecting the intrusion, the company launched an investigation with the help of leading third-party cybersecurity experts and is also coordinating with its insurers. The investigation is still ongoing and aims at determining the scope of the incident. ” reads the article published by CNN.

Ransomware

Ransomware Insurance Cybersecurity Encryption

The worst cyber attacks of 2021

Security Affairs

JANUARY 3, 2022

CNA Financial (March 2021) – CNA Financial, one of the largest insurance companies in the US, reportedly paid a $40 ransom to restore access to its files following a ransomware attack that took place in March.

Ransomware

Ransomware Cybersecurity Access Insurance

How the U.S. Govt. Shutdown Harms Security

Krebs on Security

JANUARY 23, 2019

federal government shutdown is having a tangible, negative impact on cybercrime investigations, according to interviews with federal law enforcement investigators and a report issued this week by a group representing the interests of FBI agents. The shutdown may impact government and civilian cybersecurity efforts in other ways.

Security

Security Government Insurance Cybersecurity

Security Affairs newsletter Round 488 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

SEPTEMBER 8, 2024

Head Mare hacktivist group targets Russia and Belarus Zyxel fixed critical OS command injection flaw in multiple routers VMware fixed a code execution flaw in Fusion hypervisor U.S. Replace them!

Security

Security Data breaches Artificial Intelligence Ransomware

Lloyd’s Will No Longer Include Nation-State Attacks in its Cyber Insurance Policies

IT Governance

AUGUST 25, 2022

Lloyd’s of London has announced that its insurance policies will no longer cover losses resulting from certain nation-state cyber attacks or acts of war. In a memo sent to the organisation’s insurance syndicates , Underwriting Director Tony Chaudhry said that Lloyd’s remains “strongly supportive” of policies that cover cyber attacks.

Insurance

Insurance IT Government Risk

Op Wocao – China-linked APT20 was able to bypass 2FA

Security Affairs

DECEMBER 23, 2019

China-linked cyber espionage group APT20 has been bypassing two-factor authentication (2FA) in recent attacks, cyber-security firm Fox-IT warns. Security experts from cyber-security firm Fox-IT warns of a new wave of attacks, tracked as Operation Wocao, carried out by China-linked cyber espionage group APT20 that has been bypassing 2FA.

Authentication

Authentication Insurance Access Government

BazarCall attacks have revolutionized ransomware operations

Security Affairs

AUGUST 11, 2022

The researchers at cybersecurity firm AdbIntel state that currently at least three autonomous threat groups are adopting and independently developing their own targeted phishing tactics derived from the call back phishing methodology. The third iteration of the BazarCall group was observed in late June 20 and goes by the name of Roy/Zeon.

Ransomware

Ransomware Phishing Insurance Access

Low-Drama ‘Dark Angels’ Reap Record Ransoms

Krebs on Security

AUGUST 5, 2024

A ransomware group called Dark Angels made headlines this past week when it was revealed the crime group recently received a record $75 million data ransom payment from a Fortune 50 company. ThreatLabz found Dark Angels has conducted some of the largest ransomware attacks to date, and yet little is known about the group.

Ransomware

Ransomware Healthcare Insurance Cybersecurity

1M compromised cards available for free in the underground market

Security Affairs

AUGUST 8, 2021

Group-IB detected an unconventional post on several carding forums containing links to a file containing 1 million compromised cards. On August 2, Group-IB Threat Intelligence & Attribution system detected an unconventional post on several carding forums. It’s especially unusual for a previously unknown market player.

Marketing

Marketing Sales IT Insurance

Feds Seize LockBit Ransomware Websites, Offer Decryption Tools, Troll Affiliates

Krebs on Security

FEBRUARY 20, 2024

authorities have seized the darknet websites run by LockBit , a prolific and destructive ransomware group that has claimed more than 2,000 victims worldwide and extorted over $120 million in payments. This prompted several XSS members to start posting memes taunting the group about the security failure. ” one denizen quipped.

Ransomware

Ransomware Encryption Insurance Manufacturing

POLONIUM APT targets Israel with a new custom backdoor dubbed PapaCreep

Security Affairs

OCTOBER 13, 2022

An APT group tracked as Polonium employed custom backdoors in attacks aimed at Israelian entities since at least September 2021. This circumstance is confirmed by revelations that emerged in the last couple of years that the Iranian government is using cyber mercenaries for its operations. ” reads the report published by ESET.

Communications

Communications Cloud Insurance Ransomware

MY TAKE: Identity ‘access’ and ‘governance’ tech converge to meet data protection challenges

The Last Watchdog

FEBRUARY 25, 2019

based supplier of identity access management (IAM) systems, which recently announced a partnership with Omada, a Copenhagen-based provider of identity governance administration (IGA) solutions. Governance and attestation quickly became a very big deal. Compliance became a huge driver for governance and attestation,” Curcio said. “It

Access

Access Government Authentication Data breaches

Student loan company that stole millions from consumers leaks sensitive phone calls, SSNs, tax records

Security Affairs

JUNE 5, 2020

The database seems to belong to members of the Student Advocates Group, which an FTC press release named as a student loan debt relief scheme that “bilked millions out of consumers by charging illegal upfront fees and falsely promising to lower or even eliminate consumers’ loan payments or balances.”. What data is in the bucket?

Access

Access Security Marketing IT

Security Affairs newsletter Round 362 by Pierluigi Paganini

Security Affairs

APRIL 24, 2022

T-Mobile confirms Lapsus$ had access its systems Are you using Java 15/16/17 or 18 in production? Patch them now!

Security

Security Phishing Ransomware Insurance

We Infiltrated a Counterfeit Check Ring! Now What?

Krebs on Security

JUNE 30, 2021

One fraud-fighting group is intercepting hundreds to thousands of these per day. For the past year, BWare has maintained contact with an insider from the criminal group that’s been sending daily lists of would-be victims who are to receive counterfeit checks printed using the real bank account information of legitimate companies.

Insurance

Insurance IT Education Government

Australian government announced sanctions for Medibank hacker

Iran-linked APT group Pioneer Kitten sells access to hacked networks

Webinars

Trending Sources

BlackCat Ransomware Group Implodes After Apparent $22M Payment by Change Healthcare

Webinars

SilverTerrier gang uses COVID-19 lures in BEC attacks against healthcare, government organizations

TA505 group updates tactics and expands the list of targets

Ransomware Victims That Pay Up Could Incur Steep Fines from Uncle Sam

Previously undetected Earth Longzhi APT group is a subgroup of APT41

Riding the State Unemployment Fraud ‘Wave’

Group-IB presents its annual report on global threats to stability in cyberspace

Dark Overlord hacking crew publishes first batch of confidential 9/11 files

FBI, CISA, HHS warn of targeted ALPHV/Blackcat ransomware attacks against the healthcare sector

Greylock McKinnon Associates data breach exposed DOJ data of 341650 people

Texas Tech University data breach impacted 1.4 million individuals

A cyberattack on Kuwait Health Ministry impacted hospitals in the country

US DoJ charges Iranian hackers for attacks on US satellite companies

Norton Healthcare disclosed a data breach after a ransomware attack

Lockbit ransomware attack on MCNA Dental impacts 8.9M individuals

US pharmacy outage caused by Blackcat ransomware attack on Optum Solutions

Security Blueprints of Many Companies Leaked in Hack of Swedish Firm Gunnebo

The State of Maine disclosed a data breach that impacted 1.3M people

Delaware County, Pennsylvania, opted to pay 500K ransom to DoppelPaymer gang

First American Financial Pays Farcical $500K Fine

Ransomware Bites Dental Data Backup Firm

City of Dallas has set a budget of $8.5 million to mitigate the May Royal ransomware attack

The Financial Dynamics Behind Ransomware Attacks

La Porte County finally opted to pay $130,000 Ransom

From networking to knowledge: The impact of Collibra User Groups

26 Cyber Security Stats Every User Should Be Aware Of in 2024

US CISA report shares details on web shells used by Iranian hackers

Ransomware attack on Johnson Controls may have exposed sensitive DHS data

The worst cyber attacks of 2021

How the U.S. Govt. Shutdown Harms Security

Security Affairs newsletter Round 488 by Pierluigi Paganini – INTERNATIONAL EDITION

Lloyd’s Will No Longer Include Nation-State Attacks in its Cyber Insurance Policies

Op Wocao – China-linked APT20 was able to bypass 2FA

BazarCall attacks have revolutionized ransomware operations

Low-Drama ‘Dark Angels’ Reap Record Ransoms

1M compromised cards available for free in the underground market

Feds Seize LockBit Ransomware Websites, Offer Decryption Tools, Troll Affiliates

POLONIUM APT targets Israel with a new custom backdoor dubbed PapaCreep

MY TAKE: Identity ‘access’ and ‘governance’ tech converge to meet data protection challenges

Student loan company that stole millions from consumers leaks sensitive phone calls, SSNs, tax records

Security Affairs newsletter Round 362 by Pierluigi Paganini

We Infiltrated a Counterfeit Check Ring! Now What?

Stay Connected