IT Security Incidents

Stay informed about real-world incidents that impact organizations and individuals. Get insights into data breaches, hacking attempts, and distributed denial-of-service (DDoS) attacks, along with expert analysis and recommended countermeasures.

US-Certs: SSL Inspection Tools Might Make Cybersecurity Weaker

A recent warning issued by US-CERT has advised that SSL inspection tools may actually do the opposite of what they are intended for; i.e. they might serve to weaken the cyber defenses of healthcare organizations’ … Read more

Wi-Fi Routers Infected by Switcher Trojan through Android Mobiles

Kaspersky Lab has identified a highly dangerous new Trojan which has been used to attack Wi-Fi routers through Android devices. The new form of malware, which has been dubbed the Switcher Trojan, is presently being … Read more

Erie County Medical Center Patients Put at Risk by Apparent Ransomware Attack

Ashland Women’s Health confirmed in April 2017 that it had been the victim of a significant ransomware attack.19,272 Ashland patients were affected. This followed confirmation the previous week that ABCD pediatrics ransomware attack had put … Read more

San Francisco Transport System Ransomware Attack Reported

A ransomware attack on the San Francisco Transport System in November 2016 resulted in the encryption of computers used by the city’s light rail system. The criminals responsible for the attack demanded ransom of 100 … Read more

Yahoo Breach Investigated By U.S. Securities and Exchange Commission

It has been confirmed that the U.S. Securities and Exchange Commission (SEC) are to investigate Yahoo concerning two enormous data breaches that were made public in late 2016. The controls put in place by Yahoo … Read more

Samba possibly vulnerable to ‘WannaCry’-type attacks

It has been revealed that Samba might possibly be vulnerable to network worm attacks similar to those which were utilized to deliver WannaCry ransomware on the 12th of May 2017. Unix, Linux and numerous NAS … Read more

Industrial Sector targetted by Ransomware Attackers using KillDisk Variant

In late 2016, a new ransomware variant emerged which is now being used in attacks on industrial companies. Unlike other ransomware variants, the new malware does not permanently lock users’ files. Victims have been threatened … Read more

ABCD Pediatrics Hit By Ransomware Attack Affecting 55,000 Patients

The private health information relating to more than 55,000 patients may have been compromised in during a ransomware attack against ABCD Pediatrics on the 6th of February 2017. Attackers managed to access ABCD Pediatrics’ servers … Read more

New Powershell Remote Access Trojan Identified

New Powershell Remote Access Trojan Identified

Researchers at Cisco Talos have recently identified a new Powershell Remote Access Trojan (RAT). The memory-resident malware is almost impossible to detect because it doesn’t write files to the computer’s hard drive and uses a … Read more

Ransomware Attacks Targetting Businesses Now Using PetrWrap

A new group of criminals have taken control of Petya ransomware and are using it in ransomware attacks against businesses without the participation or knowledge of those who created the ransomware. Those responsible for the … Read more

Warning Issued by OCR to Providers of Healthcare Regarding Use of HTTPS Inspection Tools

Numerous healthcare organization employ HTTPS inspection tools in order to monitor HTTPS connections for any malware which may be present. HTTPS inspection tools are used to decrypt secure HTTPS network traffic and verify content prior … Read more

Thousands of Sites at Risk from Newly Identified Zero Day WordPress Vulnerability

A Sucuri researcher has recently discovered a new zero day WordPress vulnerability in the WordPress REST API. The vulnerability permits content injection and the escalation of user privileges. Should it be exploited, an unauthenticated user … Read more

Vulnerability in Netgear Router leads to US-CERT Alert to Replace Devices

A Netgear router vulnerability which remained unpatched for approximately 3 months was recently made public, a disclosure which placers users at risk of their devices being exploited by hackers. The threat is so large that … Read more

Madison County Invests $220K in Cybersecurity Following Ransomware Attack

The payment of a $21,000 ransom to attackers following the Madison County ransomware attack that disabled a large number of the county’s computer systems in November 2016 was necessitated as a viable backup of the data concerned … Read more

2017’s Biggest Healthcare W-2 Phishing Scam Impacted 17,000 Employees

The biggest healthcare W-2 phishing scam 2017 thus far has been reported by American Senior Communities of Indiana. Although a number of organizations have already reported being tricked by phishing emails this tax season, this … Read more

Rise in Joomla Website Attacks due to Hackers Reverse Engineering Patches

A pair of recently recognised critical vulnerabilities to the Joomla content management system are presently being utilised by hackers in a series of attacks on Joomla websites. Although the two vulnerabilities were not thought to … Read more

Google Acts Against Repeat Malware Offending Sites

Google has promised that it will take action against websites that are used repeatedly to serve malware, unwanted software, or are used to ‘phishing’ attacks. As soon as a website has been confirmed as a … Read more

Malicious Ransomware App Removed from Play Store by Google

An app that was available to members of the public for download from the Google Play store has been discovered to have contained ransomware. In recent days, Google acted to remove the ransomware app from … Read more

FBI Informs Healthcare Providers of Risks Associated with Anonymous FTP Server Use

According to a recent warning issued by the FBI, Healthcare organizations may be placing the protected health information of their patients in jeopardy by using anonymous FTP servers. Cybercriminals are profiting from the lack of … Read more

Disk-Wiping Malware Being Utilised to Format Virtual Desktops

Although disk-wiping malware has existed for several years, a new version of an older malware variant has now been detected. This malware is reportedly being used to attack companies which have implemented a virtual desktop … Read more

Cybercriminals Telephoning Customer Service Representatives to ask them to Open Malware Infected Attachments

The risk of malware and ransomware infections can be reduced by training staff to avoid opening file attachments received from unfamiliar email accounts. Despite this being common practice, a well known cybercriminal group has recently … Read more

Enterprise Firewalls Being Taken Down by Attackers Using ICMP Ping Floods

Researchers from the Danish telecom firm TDC have claimed that attackers have been using ICMP ping floods to carry out Denial of Service (DoS) attacks capable of removing enterprise firewalls. As opposed to standard DDoS … Read more

Exploitation of Vulnerability in Apache Struts Revealed

Cisco Talos and Apache have issued warnings to their users following the revelation of a new Apache Struts vulnerability that has been actively exploited in recent days. Cisco Talos researchers recently identified the ‘zero-day’ vulnerability … Read more

Gooligan Malware Infection compromises 1,300,000 Google Accounts

A new type of Android malware, known as ‘Gooligan’ has been discovered by the Israeli based company CheckPoint which specialises in cybersecurity. According to initial reports it is already spreading at a rate which has … Read more

108 L.A. County Workers Impacted by Phishing Attack – 756K Affected

The County of Los Angeles took some time to publicize it was the sufferer of a big phishing attack, particularly bearing in mind the attack was found out within a day of the May, 2016 … Read more

OCR Alerts Protected Bodies of Danger of DDoS Attacks

Over the past few weeks, there has been a rise in Denial of Service (DOS) and Distributed Denial of Service (DDoS) assaults. The assaults include inundating systems with requests and information to affect those systems … Read more

Seguin Dermatology Declares Ransomware Assault ePHI Access Possible

Texas-centered Seguin Dermatology has begun notifying patients of a ransomware assault that has likely led to electronic protected health information being wrongly accessed. The assault happened around or on September 12, 2016, and affected a … Read more

Operations Annulled After 3 UK Hospitals are Paralyzed by Computer Infection

Cyberattacks on healthcare suppliers in the U.S. are happening at a frightening speed; nevertheless, it’s not just U.S healthcare companies which are targeted by cybercriminals. During the weekend, a big security case was informed by … Read more

Analysis Emphasizes Danger of PHI Revelation from Unencrypted Healthcare Pagers

Several healthcare suppliers have now changed from pagers to more safe types of communication. Safe text messaging platforms permit safeguarded health info to be communicated swiftly and efficiently between doctors and care team associates. Those … Read more

OCR Alerts of FTP Weaknesses in NAS Appliances

The Division of Health and Human Services OCR has released a notice to HIPAA protected bodies as well as their business associates of a surge in assaults on network attached storage (NAS) appliances. The appliances … Read more

Main Ohio Urology Consortium Notifies 300K Patients of PHI Thievery

Patients of Central Ohio Urology Consortium whose safeguarded health information was thieved and displayed live in August have now been informed of the safety break. Although it’s not sure precisely when the hack happened, the … Read more

New Review Indicates Data Break Cost is $200K for each Happening

A new review indicates the cost of deciding breaks of confidential information is much lower than earlier thought. The charges are so little that for several firms there is a slight inducement to finance more … Read more

North Ottawa Medical Group Alerts 22K of Bizmatics Break

North Ottawa Medical Group has alerted 22K of its sick persons that they have been affected by a malevolent program contagion which was found out by its Electronic Medical Record management firm, Bizmatics. North Ottawa … Read more

Texas Health and Human Services Commission Informs 600 of PHI Revelation

A storage servicer has notified the loss of 15 storing packets to the Texas Health and Human Services Commission (HHSC). The packets were stowed at 3 Iron Mountain services in Fort Worth, Dallas, as well … Read more

Kern County Mental Health Division Publicizes Secrecy Break

Kern County Mental Health Division, CA. (KCMH) has informed a break of safeguarded health information that happened during the transfer of its administrative division in April 2016. The break included the revelation of a partial amount … Read more

Up to 400K Prisoners’ SSNs and PHI Revealed

Up to 400K existing and earlier inmates imprisoned by the California Department of Rehabilitation and Corrections during 1996 to 2014 have possibly had their medical data, Social Security numbers, and personally identifiable information displayed. Last … Read more

Verity Health System Prey of Phishing Assault

Verity Health System has become prey to a phishing assault leading to confidential worker data being transmitted out of the company. Employee names, Social Security numbers, addresses, money earned in the fiscal year, as well … Read more

Illinois Data Break Notice Law Renewed

Illinois data break notice rule has been updated, widening the meaning of private information and modifying the timescale for alerting the Attorney General of data breaks. A break notice will have to be released if an … Read more

Florida Medical Clinic Informs 1K Patients of Secrecy Breach

Florida Medical Clinic, PA., has informed 1K patients that their outstanding balance reports were revealed online as a consequence of a misconfiguration of its Patient Portal. Outstanding balance reports of a few patients, between November … Read more

Anti-Malware Scan Halts Cardiac Catheterization Process

It’s imperative for anti-malware keys to be utilized to defend medical appliances, even though care should be taken when designing software. In the same way, as was lately stressed at a U.S. hospice, a misconfiguration … Read more

23000 Patients of Mayfield Clinic Receive Malware-Infected Email

The Mayfield Clinic of Cincinnati patients received an email in February that contained a malevolent attachment which transferred ransomware onto their machines. The entrance on the HHS’ OCR infringement portal shows 23,341 patients received the … Read more

California Ransomware Law Approved by State Senate Commission

Bob Hertzberg, Californian Senator, introduced a new proposal (Senate Proposal 1137) in February that suggests a modification to the punitive policy in California in order to make it an offense to intentionally fix ransomware on … Read more

Mercy Hospital in Iowa Noticed Data-Capturing Virus

As per a statement issued by the hospital late previous week, a computer virus might have permitted hackers to get the data of roughly 15,000 sick persons of Mercy Iowa City. Sick persons began to … Read more

2 More Californian Hospital Ransomware Assaults Informed

2 more hospitals in South of California have informed being harmed with ransomware. The Victorville’s Desert Valley Hospital as well as Chino Valley Medical Center, which are both managed by Prime Healthcare, were hit on … Read more

21st Century Oncology Informs 2.2M Patients of Hacking Case

At 21st Century Oncology, a hacker accessed a patient database having Social Security numbers and insurance data of patients in October. The case isn’t of the magnitude of the breaks at Primera Blue Cross, Excellus BCBS, … Read more

Rogue Worker Thieves 24000 Jackson Health System Patient Files

A Jackson Health System worker is accused of thieving about 24,000 patient files over a duration of 5 years. The unit secretary of the hospital has been put on administrative leave till the end of … Read more

St. Luke’s Cornwall Hospital Informs Data Exposure to 29K Patients

St. Luke’s Cornwall Hospital has released a media declaration providing more information on the 29,156-record data infringement that happened on October 31, 2015. The hospital has clarified that the infringement happened when an unknown person entered … Read more

Phishing Assault Borne by Brigham and Women’s and Brigham as well as Women’s Faulkner Hospitals

Boston’s Brigham and Women’s Hospital has warned patients of a security infringement as soon as a phishing assault compromised the email account of a hospital worker. 1,009 patients have been impacted by the cyberattack.   … Read more

Latest Oregon Infringement Notification Law Becomes Effective

Companies doing business in the state of Oregon should now abide by the latest data infringement law that became effective on January 1, 2016. If a data infringement is suffered that reveals the personal information … Read more

Infringement of Washington Town Health Care District Information

Roughly 3 months after suffering an infringement of personal information, Washington Town Health Care District has tendered an infringement notification to the California Attorney General’s Office describing an infringement of personal information of Californians. The … Read more