The LockBit ransomware-as-a-service (RaaS) gang has published the name and logo of what's purportedly one of its latest victims: Accenture, the global business consulting firm with an insider track on some of the world's biggest, most powerful companies. Accenture's clients include 91 of the Fortune Global 100 and more than three-quarters of the Fortune Global 500. According to its 2020 annual report, that includes e-commerce giant Alibaba, Cisco and Google. READ MORE...
A health system in Georgia has begun notifying patients of a six-month-long data breach that culminated in a ransomware attack. St. Joseph's/Candler (SJ/C), one of the largest hospital systems in Savannah, became aware of suspicious network activity on the morning of June 17, 2021. A ransomware attack was confirmed, and steps were taken to limit its impact. READ MORE...
With the use of QR codes rising, so, too, are the numbers of scams that aim to take advantage them. Researchers warned that threat actors are going so far as to send potential victims to gas stations to use Bitcoin ATMs in their endeavors to exploit the technology. The Better Business Bureau (BBB) also warned recently that consumers should watch out for a growing list of scams using QR codes - which are appearing everywhere these days as a simple and contactless way to share information. READ MORE...
An international police sting netted 23 arrests in three countries of suspects behind a business email compromise scheme that last year turned to capitalizing on COVID-19 fears, Europol announced on Wednesday. Together, the fraudsters are believed to have stolen at least $1.2 million from companies in 20 countries, mainly European and Asian nations, the European Union police agency said. READ MORE...
Microsoft has issued an advisory for another zero-day Windows print spooler vulnerability tracked as CVE-2021-36958 that allows local attackers to gain SYSTEM privileges on a computer. This vulnerability is part of a class of bugs known as 'PrintNightmare,' which abuses configuration settings for the Windows print spooler, print drivers, and the Windows Point and Print feature. Microsoft released security updates in both July and August to fix various PrintNightmare vulnerabilities. READ MORE...
A key that can be used to decrypt files encrypted by the REvil ransomware delivered as part of the Kaseya attack has been made public. According to threat intelligence company Flashpoint, an individual using the online moniker "Ekranoplan" recently claimed on a hacker forum that they had obtained a decryption key for the REvil ransomware. The individual posted a GitHub link pointing to a screenshot containing the key. READ MORE...