Security Affairs

MARCH 24, 2025

The group has extended its operations to countries in Asia and targets various sectors, including healthcare, real estate, construction, IT, food, and manufacturing.” Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking, ransomware)

Ransomware 101

Ransomware Hacking Social Engineering VPN 101

Schneier on Security

SEPTEMBER 21, 2021

Apparently, a nation-state hacked Alaska’s Department of Health and Social Services. Not sure why Alaska’s Department of Health and Social Services is of any interest to a nation-state, but that’s probably just my failure of imagination.

Hacking 316

Hacking Healthcare 316

Krebs on Security

DECEMBER 13, 2022

“InfraGard connects critical infrastructure owners, operators, and stakeholders with the FBI to provide education, networking, and information-sharing on security threats and risks,” the FBI’s InfraGard fact sheet reads.

Hacking 363

Hacking Energy and Utilities Cybercrime Accountability 363

Bleeping Computer

FEBRUARY 23, 2024

Healthcare giant UnitedHealth Group confirmed that its subsidiary Optum was forced to shut down IT systems and various services after a cyberattack by "nation-state" hackers on the Change Healthcare platform. [.]

Healthcare 129

Healthcare Hacking 129

Krebs on Security

MARCH 14, 2025

In this scam, dubbed “ ClickFix ,” the visitor to a hacked or malicious website is asked to distinguish themselves from bots by pressing a combination of keyboard keys that causes Microsoft Windows to download password-stealing malware.

Phishing 278

Phishing Malware Scams Passwords 278

Security Affairs

NOVEMBER 6, 2024

Memorial Hospital and Manor is a community hospital and healthcare facility that serves Decatur County and surrounding areas in southwest Georgia. It offers a range of healthcare services, including emergency care, inpatient and outpatient services, surgical care, and specialized medical services. Ransomware attacks on U.S.

Ransomware 124

Ransomware Healthcare Antivirus Data breaches 124

SecureWorld News

APRIL 24, 2024

UnitedHealth Group, parent company of Optum and Change Healthcare, has confirmed that it paid the ransom demands of the cybercriminals behind the late February incident that led to widespread service outages in the U.S. healthcare industry.

Healthcare 113

Healthcare Hacking Ransomware Insurance 113

Security Affairs

APRIL 13, 2025

healthcare providers surged in 2024, with 98 attacks compromising 117 million records. High-profile breaches include Change Healthcare (100M records), Summit Pathology (1.8M), OnePoint Patient Care (796K), and Boston Childrens Health Physicians (909K). Ransomware attacks on U.S.

Data breaches 125

Data breaches Unstructured Data Identity Theft Healthcare 125

Bleeping Computer

APRIL 30, 2024

UnitedHealth confirms that Change Healthcare's network was breached by the BlackCat ransomware gang, who used stolen credentials to log into the company's Citrix remote access service, which did not have multi-factor authentication enabled. [.]

Healthcare 117

Healthcare Accountability Hacking Authentication 117

Security Affairs

JANUARY 10, 2024

The Healthcare services provider HMG Healthcare has disclosed a data breach that impacted 40 affiliated nursing facilities. In November 2023, the Healthcare services provider HMG Healthcare discovered a data breach that exposed personal health information related to residents and employees at HMG affiliated nursing facilities.

Data breaches 131

Data breaches Healthcare Hacking Ransomware 131

CyberSecurity Insiders

OCTOBER 21, 2022

As this practice is against the data privacy rules of the United States, it can lead to a situation where the healthcare service provider can also be heavily penalized via class action lawsuits. The post Meta Pixel hack leads to US healthcare provider data breach affecting 3 million patients appeared first on Cybersecurity Insiders.

Data breaches 137

Data breaches Healthcare Hacking Data privacy 137

Security Affairs

DECEMBER 9, 2023

Kentucky health system Norton Healthcare disclosed a data breach after it was a victim of a ransomware attack in May. Norton Healthcare disclosed a data breach after a ransomware attack that hit the organization on May 9, 2023. Norton Healthcare is a healthcare system based in Louisville, Kentucky (US).

Healthcare 135

Healthcare Data breaches Ransomware Insurance 135

Security Affairs

NOVEMBER 29, 2024

Russian authorities arrested ransomware affiliate Mikhail Matveev, aka Wazawaka, for developing malware and ties to hacking groups. and New Jersey, as well as organizations in the healthcare and other sectors nationwide. The attacks hit law enforcement agencies in Washington, D.C.

Ransomware 117

Ransomware Healthcare Hacking Malware 117

Security Affairs

DECEMBER 16, 2024

ConnectOnCall is a telehealth platform and after-hours on-call answering service designed to enhance communication between healthcare providers and patients. ConnectOnCall mailed notice letters to all potentially impacted individuals for whom the healthcare providers had current mailing addresses on December 11, 2024.

Data breaches 107

Data breaches Identity Theft Healthcare Insurance 107

Security Affairs

NOVEMBER 19, 2024

Evgenii Ptitsyn and others allegedly ran an international hacking scheme since November 2020, deploying Phobos ransomware to extort victims. If convicted, the man could face up to 20 years in prison for each wire fraud count, 10 years for each computer hacking charge, and 5 years for conspiracy to commit computer fraud and abuse.

Cybercrime 114

Cybercrime Ransomware Healthcare Education 114

Security Affairs

JULY 4, 2024

Healthcare firm HealthEquity disclosed a data breach caused by a partner’s compromised account that exposed protected health information. Healthcare fintech firm HealthEquity disclosed a data breach after a partner’s compromised account was used to access its systems. ” continues the Form 8-K.

Data breaches 122

Data breaches Healthcare Accountability Insurance 122

Security Affairs

DECEMBER 4, 2024

Black Basta has targeted at least 12 critical infrastructure sectors, including Healthcare and Public Health. Black Basta affiliates have targeted over 500 private industry and critical infrastructure entities, including healthcare organizations, in North America, Europe, and Australia.” reads the CSA.

Ransomware 124

Ransomware Telecommunications Healthcare Insurance 124

Security Affairs

OCTOBER 18, 2024

Omni Family Health is a nonprofit organization that provides healthcare services to communities in California, focusing on underserved populations. Omni Family Health aims to improve access to quality healthcare and address health disparities in the regions they serve.

Data breaches 138

Data breaches Healthcare Insurance Engineering 138

Security Affairs

MAY 11, 2024

A cyberattack hit the US Healthcare giant Ascension and is causing disruption of the systems at hospitals in the country. Ascension is one of the largest private healthcare systems in the United States, ranking second in the United States by the number of hospitals as of 2019. ” reads the notice of security incident.

Healthcare 115

Healthcare Cyber Attacks Ransomware Hacking 115

Security Affairs

NOVEMBER 28, 2024

It provides healthcare for people of the Wirral Peninsula and the surrounding areas of North West England and North Wales. 2] The UK healthcare provider suffered a cyberattack that impacted its systems forcing the healthcare organization to postpone appointments and scheduled procedures.

Healthcare 115

Healthcare Ransomware Hacking 115

Security Affairs

NOVEMBER 28, 2023

The US Healthcare provider Ardent Health Services disclosed that it was the victim of a ransomware attack last week. Ardent Health Services is a healthcare company that operates hospitals and other medical facilities in the United States. The healthcare provider disclosed that it has suffered a ransomware attack on November 23. .”

Healthcare 131

Healthcare Ransomware Technology Internet 131

Security Affairs

OCTOBER 20, 2022

Healthcare system Advocate Aurora Health (AAH) disclosed a data breach that exposed the personal data of 3,000,000 patients. The US-based hospital healthcare system Advocate Aurora Health (AAH) disclosed a data breach that exposed the personal data of 3,000,000 patients. SecurityAffairs – hacking, Advocate Aurora Health).

Data breaches 137

Data breaches Healthcare Insurance Accountability 137

Security Affairs

MAY 21, 2024

CISA adds NextGen Healthcare Mirth Connect deserialization of untrusted data vulnerability to its Known Exploited Vulnerabilities catalog. Cybersecurity and Infrastructure Security Agency (CISA) added a NextGen Healthcare Mirth Connect vulnerability to its Known Exploited Vulnerabilities (KEV) catalog.

Healthcare 124

Healthcare Engineering Hacking Risk 124

Security Affairs

APRIL 8, 2025

The Tor leak site of the Everest ransomware group went offline after being hacked and defaced over the weekend. The Everest ransomware gangs darknet site went offline after being hacked and defaced, with victim listings replaced by the following message. ” reads the threat actor profile issued by the U.S.

Ransomware 83

Ransomware Healthcare Hacking Scams 83

GlobalSign

OCTOBER 31, 2024

Find out about the latest cybersecurity news, including a Water provider hack, updates on healthcare security, and recent criminal arrests.

Healthcare 97

Healthcare Hacking Cybersecurity 97

Security Affairs

DECEMBER 8, 2024

Anna Jaques Hospital is a not-for-profit community healthcare facility located in Newburyport, Massachusetts. On January 19, the Money Messageransomware gang added the healthcare organization to its Tor leak site claiming the theft of 600GB of sensitive data, including PII and diagnoses.

Data breaches 115

Data breaches Insurance Healthcare Ransomware 115

Krebs on Security

JUNE 18, 2020

An information technology specialist at the Federal Emergency Management Agency (FEMA) was arrested this week on suspicion of hacking into the human resource databases of University of Pittsburgh Medical Center (UPMC) in 2014, stealing personal data on more than 65,000 UPMC employees, and selling the data on the dark web.

Identity Theft 362

Identity Theft Healthcare Hacking Technology 362

Krebs on Security

FEBRUARY 9, 2023

“During the height of the COVID-19 pandemic in 2020, Trickbot targeted hospitals and healthcare centers, launching a wave of ransomware attacks against hospitals across the United States,” the sanctions notice continued. A spam email from 2020 containing a Trickbot-infected attachment. Image: Microsoft.

Hacking 242

Hacking Cybercrime Ransomware Government 242

SecureWorld News

SEPTEMBER 27, 2024

healthcare system. The legislation is a direct response to a surge in cyberattacks targeting healthcare providers, breaching patient privacy, and disrupting care delivery across the nation. The legislation could potentially lower costs associated with recovery from breaches and improve public trust in healthcare services.

Healthcare 109

Healthcare Cybersecurity Artificial Intelligence Insurance 109

Security Affairs

SEPTEMBER 20, 2024

Microsoft warns that financially motivated threat actor Vanilla Tempest is using INC ransomware in attacks aimed at the healthcare sector in the U.S. healthcare sector. The threat actor has been active since July 2022, it was observed targeting organizations in the education, healthcare, IT, and manufacturing sectors.

Healthcare 129

Healthcare Ransomware Cybercrime Manufacturing 129

Krebs on Security

MAY 6, 2020

” The assault on Fresenius comes amid increasingly targeted attacks against healthcare providers on the front lines of responding to the COVID-19 pandemic. For example, actors may seek to obtain intelligence on national and international healthcare policy, or acquire sensitive data on COVID-19-related research.”

Ransomware 363

Ransomware Healthcare Cyber Attacks Manufacturing 363

Krebs on Security

SEPTEMBER 20, 2021

It happens all the time: Organizations get hacked because there isn’t an obvious way for security researchers to let them know about security vulnerabilities or data leaks. There may be another good reason for consolidating security contact and vulnerability reporting information in one, predictable place.

Retail 352

Retail Healthcare Internet Internet 352

Security Affairs

JANUARY 18, 2025

The US Treasurys OFAC also sanctionedYin Kecheng, a Shanghai-based cyber actor who was involved with the recent hack of the Department of the Treasury’s network. BeyondTrust provides Privileged Access Management and secure remote access, serving sectors like government, healthcare, banking, and energy. critical infrastructure.”

Cybersecurity 118

Cybersecurity Telecommunications Government Healthcare 118

SecureWorld News

JULY 18, 2024

UnitedHealth Group, the Minnesota-based health insurance giant, recently announced its second quarter results, revealing a stark financial impact from the cyberattack on Change Healthcare. The breach, which came to light in early 2024, involved sophisticated hacking techniques that targeted the company's extensive database and infrastructure.

Healthcare 101

Healthcare Risk Data breaches Insurance 101

Security Affairs

FEBRUARY 28, 2024

healthcare organizations of targeted ALPHV/Blackcat ransomware attacks. healthcare organizations of targeted attacks conducted by ALPHV/Blackcat ransomware attacks. This alert aims at organizations in the healthcare sector because ALPHV Blackcat affiliates have been observed primarily targeting this sector.

Healthcare 135

Healthcare Ransomware Government Insurance 135

Troy Hunt

NOVEMBER 13, 2024

But in all likelihood, there will be more than a handful of domain subscribers who take issue with that volume of people data sitting there in one corpus easily downloadable via a clear web hacking forum.

Data breaches 304

Data breaches Passwords B2B Technology 304

SecureWorld News

MARCH 7, 2024

The unprecedented cyberattack on healthcare giant Change Healthcare has taken a chaotic turn, with allegations that the prolific BlackCat ransomware gang conducted an "exit scam"—shutting down operations after receiving a $22 million ransom payment from the company without paying their own affiliate hacker.

Healthcare 117

Healthcare Ransomware Data preservation Scams 117