Updated: Jul 9
Healthcare data breaches display no signs of slowing since threat actors can find lucrative data from these organizations. One such incident hit an American healthcare entity that impacted tens of thousands of patients. While we are on the topic of breaches, a threat actor apparently breached Shanghai Police and is now selling a billion records. In other news, scammers are back with another phishing campaign on WhatsApp. Read along for cyber happenings from the weekend.
Threat Intelligence - Hacking news
Top Breaches, Malware, Vulnerabilities Reported in the Last 24 Hrs
A data breach at Eye Care Leaders affected 92,361 patients’ data belonging to Missouri-based Mattax Neu Prater Eye Center. The adversary gained unauthorized access to the system and deleted system configuration files and databases.
A threat actor, HackerDan, was found offering a database containing the records of a billion Chinese civilians for 10 Bitcoin. The database is reportedly stolen from the Shanghai Police.
A data breach at the Cedar Rapids Community School District forced it to temporarily halt all summer activities, including field trips, Scholar Camp, and Champions summer programming. Activities will resume on July 11.
AstraLocker ransomware is shutting down its operations and has released decryptors. The threat actor plans on moving to cryptojacking from extortion schemes.
Kaspersky discovered a new SessionManager IIS backdoor that has been used to target government, NGOs, industrial, and military organizations across Europe, Asia, South America, Africa, and the Middle East.
The U.K Army’s Twitter and YouTube accounts were hacked and modified to push crypto scams. While the Twitter account displayed fake NFTs and crypto giveaways, the YouTube account aired Ark Invest live streams.
The Ukrainian cyber police arrested nine members of a group that stole approximately $34 million (100 million hryvnias) via 400 phishing sites that stole the banking details of citizens.
A new WhatsApp phishing campaign is targeting individuals willing to work in the U.K. The scammers pretend to be the U.K government and offer free visas and in turn, collect the personal data of the victims.
Threat actors are hijacking verified Twitter accounts to share fake, well-written suspension messages to steal credentials from other verified accounts.
Oak9, a Chicago-based infrastructure-as-code startup, raised $8 million in Series A funding, led by Menlo Ventures, with Cisco Investments and Morgan Stanley’s Next Level Fund as other participants.