<img src="https://secure.ruth8badb.com/159098.png" alt="" style="display:none;">

IT Security Newsletter - 3/8/2023



Hospital Clínic de Barcelona severely impacted by ransomware attack

The Hospital Clínic de Barcelona suffered a ransomware attack on Sunday morning, severely disrupting its healthcare services after the institution's virtual machines were targeted by the attacks. The 819-bed hospital is based in Barcelona, Spain, and serves over half a million people seeking medical attention and healthcare services. According to a statement issued by the Government of Catalonia, the Hospital Clínic de Barcelona suffered an attack by the RansomHouse ransomware operation. READ MORE...

Acer Confirms Data Offered Up for Sale Was Stolen

Acer has confirmed its systems were breached after a threat actor offered 160GB of data they say was stolen from the electronics company. Acer sells a variety of consumer electronics products, including Chromebooks, monitors, laptops, and desktop PCs. The post in the cybercrime forum claims to have a slew of secret information for sale, including Acer slides, employee manuals, and product information. READ MORE...


Hacker Cracks Toyota Customer Search Tool

A production API in Toyota's C360 customer relationship management (CRM) tool loaded with the personal information of an unknown number of the carmaker's customers in Mexico was found to expose reams of sensitive data. A disclosure from threat hunter Eaton Zveare outlines how it was possible to access Toyota customers' names, addresses, phone numbers, emails, and tax identification numbers, as well as vehicle ownership and service history stored in the C360 CRM. READ MORE...


New malware variant has "radio silence" mode to evade detection

The Sharp Panda cyber-espionage hacking group is targeting high-profile government entities in Vietnam, Thailand, and Indonesia with a new version of the 'Soul' malware framework. The particular malware was previously seen in espionage campaigns targeting critical Southeast Asian organizations, attributed to various Chinese APTs. Check Point identified a new campaign using the malware that started in late 2022 and continues through 2023, employing spear-phishing attacks for initial compromise. READ MORE...

Emotet malware attacks return after three-month break

The Emotet malware operation is again spamming malicious emails as of Tuesday morning after a three-month break, rebuilding its network and infecting devices worldwide. Emotet is a notorious malware distributed through email containing malicious Microsoft Word and Excel document attachments. When users open these documents and macros are enabled, the Emotet DLL will be downloaded and loaded into memory. READ MORE...


Alert: Crims hijack these DrayTek routers to attack biz

If you're still using post-support DrayTek Vigor routers it may be time to junk them, see if they can be patched, or come up with some other workaround, as a malware variant is setting up shop in the kit. The operators behind the Hiatus malware campaign are hijacking DrayTek Vigor router models 2960 and 3900 powered by MIPS, i386 and Arm-based processors to in turn attack businesses in North and Latin America as well as in Europe. READ MORE...

On This Date

  • ...in 1817, the New York Stock Exchange is founded.
  • ...in 1971, Muhammad Ali and Joe Frazier meet in the "Fight of the Century," with Frazier winning in 15 rounds via unanimous decison.
  • ...in 1978, the debut radio episode of Douglas Adams's "The Hitchhiker's Guide to the Galaxy" is transmitted by BBC Radio 4.
  • ...in 1979, Philips gives the first public demonstration of audio compact disc technology.