A remote access trojan (RAT) targeting small office/home office (SOHO) devices has remained undetected for nearly two years, according to security researchers with Black Lotus Labs, the threat intelligence arm of Lumen Technologies.
Canadian NetWalker Ransomware Affiliate Pleads Guilty in US
A Canadian national has pleaded guilty in a United States court to charges related to his role in a cybercrime operation involving the NetWalker ransomware.
Sebastien Vachon-Desjardins, 34, is a former Canadian government employee. He was previously sentenced to seven years in prison in Canada for ransomware attacks.
Chinese Hackers Target Building Management Systems
Threat hunters at Kaspersky have uncovered a series of attacks that targeted organizations across telecoms, transportation, and industrial sectors with the ShadowPad backdoor.
The campaign hit the manufacturing and telecoms industries in Afghanistan and Pakistan, and a logistics and transport organization (a port) in Malaysia.
LockBit 3.0 Ransomware Emerges With Bug Bounty Program
The LockBit 3.0 ransomware operation was launched recently and it includes a bug bounty program offering up to $1 million for vulnerabilities and various other types of information.
FTC Takes Action Against CafePress Over Massive Data Breach, Cover-Up
The Federal Trade Commission (FTC) on Friday announced that it has finalized an order against CafePress, requiring it to improve its security posture following a cybersecurity incident that the company attempted to cover up.
Black Basta Ransomware Becomes Major Threat in Two Months
A Year After Death, McAfee’s Corpse Still in Spanish Morgue
The body of software entrepreneur John McAfee remained at a morgue in Spain Thursday a year after his death as a legal case filed by his family, who do not believe he committed suicide, is yet to be resolved.
Chinese APT ‘Bronze Starlight’ Uses Ransomware to Disguise Cyberespionage
A China-linked state-sponsored hacking group named Bronze Starlight was observed deploying various ransomware families to hide the true intent of its attacks.
MCG Health Faces Lawsuit Over Data Breach Impacting 1.1 Million Individuals
Patient care guidelines provider MCG Health faces a proposed class lawsuit over the compromise of patient information during a March 2022 data breach.
A wholly-owned subsidiary of the New York-based Hearst Health network, MCG Health combines artificial intelligence with clinical expertise to help healthcare organizations provide care to their patients.
US Subsidiary of Automotive Hose Maker Nichirin Hit by Ransomware
A US subsidiary of Nichirin, a Japanese company that makes hoses for the automotive industry, was recently hit by ransomware.
The company said on Wednesday in a press release written in Japanese that the attack, aimed at Nichirin-Flex USA, was discovered on June 14. Other Nichirin subsidiaries do not appear to be affected.
