A medical practice management firm that provides support to Tacoma-based MultiCare Health System has alerted over 200,000 patients, providers and staff that their personal information may have been exposed. Woodcreek Provider Services announced Tuesday that after a ransomware attack of its tech vendor, the information was retrieved upon paying an undisclosed ransom, The News Tribune reported. READ MORE...
Microsoft-owned GitHub has removed a security researcher's proof-of-concept exploit for vulnerabilities in Microsoft software that are at the center of widespread malicious cyber activity. The decision immediately touched off debate in the cybersecurity industry over when researchers should refrain from releasing software exploits and how software repositories like GitHub should govern their users. READ MORE...
Molson Coors, one of the nation's largest beer makers, halted production this week after hackers disrupted company operations. In a regulatory filing, company officials said the cyberattack has taken its systems offline, and delayed production and shipments. Details about the nature of the attack were not disclosed. "Molson Coors experienced a systems outage that was caused by a cybersecurity incident," the company said in a statement. READ MORE...
Software-as-a-Service (SaaS) apps are a treasure trove of information. They're where business takes place and decisions get made, so it's not surprising that they're attractive targets for bad actors. But while there's lots of bustle around protecting data that resides in on-premises apps, when it comes to protecting data in SaaS apps, it's pretty much… crickets. Why? Mainly, it's because many enterprises assume SaaS vendors protect their customers' data in those apps. READ MORE...
The financial cyber-gang is running limited attacks ahead of broader offensives on point-of-sale systems. The FIN8 cyberattack group has resurfaced after a period of relative quiet, researchers have found. The gang is using new versions of the BadHatch backdoor to compromise companies in the chemical insurance, retail and technology industries. The attacks have been seen hitting organizations around the world, mainly in Canada, Italy, Panama, Puerto Rico, South Africa and the United States. READ MORE...
Threat actors are now installing a new ransomware called 'DEARCRY' after hacking into Microsoft Exchange servers using the recently disclosed ProxyLogon vulnerabilities. Since Microsoft revealed earlier this month that threat actors were compromising Microsoft Exchange servers using new zero-day ProxyLogon vulnerabilities, a significant concern has been when threat actors would use it to deploy ransomware. Unfortunately, tonight our fears became a reality. READ MORE...
Industrial cybersecurity firm Claroty this week disclosed technical details for two potentially serious vulnerabilities affecting PowerLogic smart meters made by Schneider Electric. PowerLogic is a line of revenue and power quality meters that are used not only by utilities, but also industrial companies, healthcare organizations, and data centers for monitoring electrical networks. READ MORE...
Today, OVH founder and chairman Octave Klaba has provided a plausible explanation for the fire that had burned down OVH data centers in Strasbourg, France. OVH is the largest hosting provider in Europe and the third-largest in the world. The cloud computing company provides VPS, dedicated servers, and other web services. The online properties impacted by the fire included free chess server Lichess.org, videogame maker Rust, cryptocurrency exchange Deribit's blog and docs sites. READ MORE...