08-10-2023, 01:28 AM
A new threat actor—seemingly of Vietnamese origin—has emerged to use a new variant of the Yashma ransomware-as-a-service.The attacker is targeting multiple countries,including Bulgaria and China.A Portuguese healthcare provider confirmed that a“deliberate and malicious cyberattack”disrupted its internal functioning and had to suspend non-essential procedures.Do you know how much Brits have lost in data breaches over the past four years?It’s BILLIONS!Read on for more details.
- Cisco Talos discovered a suspected Vietnamese threat actor using a variant of the Yashma ransomware,mimicking WannaCry characteristics,to target victims in English-speaking countries,Bulgaria,China,and Vietnam.
- The Regional Health Service of Madeira(SESARAM),Portugal,was targeted by a cyberattack,resulting in a disruption of its non-essential medical procedures.This includes appointments,surgeries,and diagnostic tests,which will be temporarily halted.
- The CISA published its Cybersecurity Strategic Plan for the fiscal year 2024–2026,which will focus on three primary goals-coordinated threat disclosure,proactive vulnerability analysis,and cybersecurity investments.
- Mayanei Hayeshua Medical Center in Bnei Brak,Israel,experienced a ransomware attack that disrupted its administrative systems,prompting the Health Ministry to urge the public to avoid going to the emergency room.
- Ukrainian government agencies were targeted by hackers using a phishing campaign that utilized the open-source program MerlinAgent.The campaign was conducted by UAC-0154 and involved sending malicious emails to the targets.
- The DHS announced the allocation of$374.9 million in grant funding to help state and local governments strengthen their cybersecurity and protect critical infrastructure as part of its State and Local Cybersecurity Grant Program(SLCGP).
- Research by Imperva revealed that the 33 most notable breaches cost U.K organizations over$17 billion(£13.5 billion)between April 2019 and December 2022,with over 200 million British citizens'data being compromised.Moreover,40%of incidents were caused by insider threats,while 33%by malware,ransomware,and phishing.
- The TargetCompany ransomware campaign was found utilizing Fully Undetectable(FUD)packers,such as BatCloak,to infect vulnerable systems and achieve persistence.The attackers are leveraging Remcos RAT and exploiting vulnerable SQL servers.
- McAfee spotted an ad fraud campaign in which the Google Play Store was infiltrated by 43 Android apps with 2.5 million installs,which displayed ads while a phone's screen was off,posing user profiling risks and committing fraud against advertisers.
- Resilience Cyber Insurance Solutions bagged$100 million in a Series D round led by Intact Ventures,with participation from Lightspeed Venture Partners,General Catalyst,and Founders Fund.