A proposed federal class action lawsuit alleges that patient debt collection software firm Intellihartx was negligent in its handling of third-party risk, contributing to a breach affecting nearly 490,000 individuals.
“The attack chain ends with the victim machine infected with multiple unique remote access trojan malware instances, such as Warzone RAT and Quasar RAT,” Securonix researchers Den Iuzvyk, Tim Peck, and Oleg Kolesnikov said.
The top French privacy regulator has imposed a fine of 40 million euros against a Parisian advertising technology company for its use of website tracking cookies and failure to process users’ personal data in compliance with privacy laws.
The notorious extortion crew, aka ALPHV, added the Beverly Hills Plastic Surgery to its list of compromised organizations, and bragged about swiping people’s personal information and healthcare records.
The Russian APT28 group has launched a spear-phishing campaign that has affected a regional prosecutor’s office, an undisclosed executive authority, a military aviation company, and other government entities in Ukraine. It is suggested that users update the vulnerable Roundcube webmail servers to its latest version.
The breach was initially discovered by security researcher Jeremiah Fowler. Upon further investigation, it was revealed that the primary insurer associated with all the policies listed in the exposed database was USA Underwriters.
Security experts came across a new campaign—from late 2022 to early 2023—by the Chinese state-sponsored threat group APT15, which used a novel backdoor called Graphican that possesses several capabilities. Symantec has published the IOCs for a better understanding of the threat to protect against it.
The organization said Wednesday that it was informed on June 6 by a third-party vendor – PBI Research Services/Berwyn Group – that data was accessed by hackers exploiting the MOVEit file transfer tool.
Hawai?i Community College is the latest university to deal with a ransomware attack, announcing on Tuesday night that it was forced to shut off its network and contact federal authorities about the incident.
Salt Security surveyed an international selection of 300 CISOs and CSOs to examine the cybersecurity ramifications of digitalization – and it is worth noting that almost 90% of them said that digital transformation introduces unforeseen risks.