UnitedHealth Group is demanding that healthcare providers repay the loans they received from the company after a cyberattack at its tech unit Change Healthcare last year, according to two providers on Friday. The largest U.S. health insurance company loaned out $9 billion to providers who had been struggling after the massive ransomware attack in February…
In an incident response in Q4 of 2024, GuidePoint Security identified evidence of a threat actor utilizing a Python-based backdoor to maintain access to compromised endpoints. The threat actor later leveraged this access to deploy RansomHub encryptors throughout the entire impacted network. ReliaQuest documented an earlier version of this malware on their website in February 2024….
Deepfakes are poised to be the biggest AI-related threat because of the vast potential for misuse. Criminals have yet to plumb their full potential, and we predict they will use deepfakes in new scams and criminal schemes in 2025. Popular or common social engineering scams will become even more believable with the use of deepfakes,…
Kaspersky has reported that over 57,000 ransomware attacks were detected in Southeast Asia during the first half of 2024, with Indonesia accounting for the highest number of incidents. In addition to Indonesia, where 32,803 incidents were blocked, the Philippines experienced 15,208 ransomware attacks, and Thailand saw 4,841 cases. In Malaysia, 3,920 attacks were recorded, followed…
Star Health India’s biggest health insurer, on Saturday said it had received a ransom demand of $68,000 from a cyberhacker in connection with a leak of customer data and medical records. Star, which has a roughly $4 billion market cap, is battling a reputational and business crisis since Reuters reported on Sept. 20 that a…
The Telangana Cyber Security Bureau (TGCSB) has busted an international fraud network by arresting three accused in a Rs 5.40 crore scam. On Tuesday, the officials said that TGSCB arrested three people who were involved in supplying bank account details to cyber fraudsters and were further facilitating the withdrawal of funds. The Telangana Cyber Security…
The ransomware is rudimentary with basic functionalities, likely having been created by an inexperienced developer — but it’s effective at locking up files and sucking up memory capacity. A ransomware strain coined “ShadowRoot” has been found targeting Turkish businesses through phishing attacks. The phishing emails contain a PDF attachment disguised as an invoice with embedded…
Kaspersky has identified ransomware attacks using Microsoft’s BitLocker to attempt encryption of corporate files. The threat actors are using VBScript – a programming language used to automate tasks on Windows computers – to create a malicious script with previously unreported features to maximize the damage of the attack, Kaspersky Global Emergency Response team reports. The…
