Cyber Security
#
Georgia Pharmacies Struggle with Prescription Discounts After Health Tech Cyberattack
A cyberattack on a major health tech platform last week has caused significant disruptions for pharmacies in Georgia, particularly in applying drug maker discounts to prescriptions. The intrusion, which targeted a subsidiary of UnitedHealthcare in Minnesota, has impacted thousands of pharmacies nationwide, leading to complications in the billing process through insurance companies.
According to Ben...
Cyberattack on UnitedHealthcare Affiliate Disrupts Prescription Orders Nationwide
A cyberattack targeting Change Healthcare, a unit affiliated with UnitedHealthcare, the nation’s largest insurer, has caused widespread disruption to prescription orders at thousands of pharmacies for nearly a week. Discovered last Wednesday, the attack, suspected to be orchestrated by a foreign country according to senior federal law enforcement officials, has prompted UnitedHealth Group to...
Federal Class Action Lawsuit Filed Against North Kansas City Hospital and Meritas Corporation Over Data Breach
A federal class action lawsuit has been initiated against the Board of Trustees of North Kansas City Hospital and the Meritas Corporation, alleging a data breach that affected over 500,000 individuals last year. The lawsuit asserts that the breach occurred in the Spring of the previous year but patients were not promptly notified, violating...
Biden to Sign Executive Order Strengthening Cybersecurity in Maritime Ports
U.S. President Joe Biden is scheduled to sign an executive order on Wednesday aimed at enhancing cybersecurity in maritime ports, with a focus on developing minimum cybersecurity standards for the marine transportation system, according to Anne Neuberger, Deputy National Security Advisor for Cyber and Emerging Technology.
The executive order aims to empower the Coast Guard...
Russian Authorities Arrest Suspects Linked to Cyberattacks, Including Medibank Hack
Russian authorities have apprehended three individuals, including Aleksandr Nenadkevichite Ermakov, on charges related to cybercrimes under Article 273 of the country's criminal code, according to Russian cybersecurity firm FACCT. The suspects are accused of utilizing malicious code against domestic targets, operating under the guise of a legitimate IT company named Shtazi-IT, as per FACCT's...
PSI Software Targeted in Cyberattack Amid Rising Concerns Over Critical Infrastructure Security
In the latest cybersecurity incident, PSI Software, a provider of control systems for various critical infrastructure sectors, including energy and pipeline management, fell victim to a malicious attack. The attack, detected on February 15, prompted the company to take swift action, including shutting down its email system after detecting unusual activity on its network.
As...
Internal Documents Leak Reveals Chinese Hacking Contractor’s Operations and Challenges
A recent leak of internal documents from a Chinese hacking contractor has shed light on the operations and challenges faced by Shanghai-based iSoon, a company allegedly supporting government-led hacking endeavors. The leaked documents, including spreadsheets and chat logs, were posted on GitHub by an unknown individual, providing insights into the disaffected and poorly paid...
Attempted Hijacking of El Al Flight Foiled by Pilots Amid Growing Concerns over Aircraft Cybersecurity
In a recent development, Israel’s national airline, El Al, thwarted an attempt by "hostile elements" to take control of the communication network of one of its flights from Phuket, Thailand, to Ben-Gurion Airport. This incident marks the second known hacking attempt targeting El Al flights bound for Israel in the past week.
The Jerusalem Post...
Integris Health Data Breach Sparks Cyber Extortion Attempts, Legal Battles
In November, Integris Health suffered a data breach impacting 2.4 million individuals, leading to a cascade of cyber extortion attempts, including one targeting a child and his mother, Teresa Johnston from Oklahoma. Cybercriminals exploited stolen data, demanding a $50 ransom from Johnston by Jan. 5, 2024, threatening to sell the information on the dark...
Government Accountability Office Breach Exposes Thousands of Employee Records
A breach of the Government Accountability Office (GAO) has resulted in the compromise of data associated with thousands of current and former employees, primarily from 2007 to 2017, along with some affiliated companies, the agency confirmed.
The breach, impacting approximately 6,600 individuals, was disclosed by GAO's contractor, CGI Federal, on January 17. According to agency...
PlayDapp Crypto Breach: $290 Million in Tokens Stolen, Raises Security Concerns
Hackers have reportedly exploited a stolen private key to mint and abscond with over 1.79 billion PLA tokens, a cryptocurrency integral to the PlayDapp ecosystem.
PlayDapp operates as a blockchain-based platform facilitating non-fungible token (NFT) trading within gaming environments, enabling users to buy, sell, and trade digital assets across multiple games without intermediaries.
On February 9,...
Canada’s Trans-Northern Pipelines Hit by Ransomware Attack, Data Breach Reported
The ALPHV/BlackCat ransomware group has claimed responsibility for hacking into the internal network of Canada's Trans-Northern Pipelines, one of the country's vital oil and natural gas pipelines. The group announced that it stole nearly 200 gigabytes of data from the Ontario-based company.
Trans-Northern Pipelines (TNPI) plays a crucial role in Canada's energy infrastructure, transporting refined...
Hackers Sentenced for Manipulating Taxi Dispatch System at JFK Airport
The U.S. Department of Justice has announced the sentencing of two computer hackers, Daniel Abayev and Peter Leyman, both U.S. citizens, for colluding with Russian cybercriminals to hack the electronic taxi dispatch system at New York’s John F. Kennedy International Airport (JFK).
Between September 2019 and September 2021, Abayev and Leyman routinely hacked into and...
Chinese State-Sponsored Hackers Exploit Fortinet Vulnerability to Breach Dutch Military Network
Chinese state-sponsored hackers successfully infiltrated a Dutch military network by exploiting a critical vulnerability in Fortinet's FortiGate devices. The breach, orchestrated through the CVE-2022-42475 flaw in FortiOS SSL-VPN, allowed attackers to execute arbitrary code and deploy Coathanger, a stealthy backdoor malware, for remote access and persistence across device reboots and firmware updates.
Coathanger, named after...
Hyundai Motor Europe Hit by Black Basta Ransomware Attack, Threat Actors Claim Theft of Corporate Data
Hyundai Motor Europe, the European division of Hyundai Motor Company, has fallen victim to a Black Basta ransomware attack, with threat actors alleging the theft of three terabytes of corporate data.
BleepingComputer initially uncovered the attack in early January, though Hyundai described it as IT issues at the time. However, upon further inquiry and the...