Black Basta Generated At Least $107 Million in Ransoms Since April 2022
An investigation of the Black Basta ransomware group by Corvus Insurance and Elliptic has revealed the group obtained at least $107 million in ransom payments from more than 90 victims since April 2022. Black Basta is a Russia-linked ransomware-as-a-service (RaaS) operation, where affiliates are recruited to conduct ransomware attacks for a cut of the profits. The group emerged after the infamous Conti ransomware operation was shut...
23andMe Confirms Hacker Stole Data of 6.9 Million Users
On Friday, the direct-to-consumer genetic testing company, 23andMe, confirmed that hackers gained access to the personal information of approximately 6.9 million customers in an October 2023 cyberattack. The incident came to light when a hacker posted on an online forum claiming they had obtained the profile information of millions of users and offered the data for sale. 23andMe investigated to determine the validity of the claims and...
Ardent Health System Ransomware Attack Affects Hospitals in Multiple States
A U.S. healthcare provider that operates hospitals in 6 states suffered a ransomware attack that has caused outages at several of its hospitals. Ardent Health Services said it first identified an intrusion on the morning of November 23, 2023, and launched an investigation that later revealed it was a ransomware attack. On Thanksgiving Day, several of the hospitals in its network reported network outages. Without access to critical IT...
Max Severity OwnCloud Flaw Actively Exploited in the Wild
A critical vulnerability in OwnCloud, a popular open-source self-hosted file synchronization and sharing solution, has started to be exploited by cyber actors. The vulnerability affects the Graphapi app, which relies on a third-party GetPhpinfo.php library that provides a URL. When the URL is accessed, it reveals the configuration of the PHP environment, which includes all of the environment variables of the webserver. In a...
COO of Cybersecurity Company Pleads Guilty to Attack on Georgia Hospitals to Drum up Business
The former chief operating officer (COO) of a cybersecurity firm who hacked two hospitals in an attempt to win business has changed his plea to guilty in an attempt to avoid a lengthy jail term. On September 27, 2018, two hospitals that are part of Gwinnett Medical Center (GMC) in Georgia suffered cyberattacks that disrupted their phone systems and printers. Access was gained to the phone system and a command was sent that disabled...