OnDemand | 2021 Pharmaceutical Threat Outlook
Data Breach Today
JANUARY 5, 2021
Thwarting Mobile Phishing
Data Breach Today
JANUARY 5, 2021
Thwarting Mobile Phishing
MAY 16, 2019
Earlier this month, two major pharmaceutical giants issued warnings about phishing emails targeting job hunters. Unfortunately, red flags like that are ignored in all kinds of phishing scams, and this scheme is a perfect example of why that happens. Can you spot a phishing scam? The warnings issued by AstraZeneca and GlaxoSmithKline show just how big of a threat phishing poses. For example, most ransomware attacks are spread via phishing emails.
NOVEMBER 17, 2020
After the breakout of the COVID-19 pandemic, mobile phishing attacks targeting pharmaceutical companies have shifted their focus from credential theft to malware delivery.
OCTOBER 20, 2020
Hundreds of medical patients taking cancer drugs, Premarin, Lyrica and more are now vulnerable to phishing, malware and identity fraud.
DECEMBER 18, 2020
Cybercrime organizations continue to be very active while pharmaceutical organizations are involved in the development of a COVID-19 vaccine and medicines to cure the infections. The experts uncovered a large scale spear-phishing campaign that has been ongoing since September 2020.
OCTOBER 17, 2020
Google delivered 33,015 alerts to its users during the first three quarters of 2020 to warn them of phishing attacks, launched by nation-state actors, targeting their accounts. Google sent 11,856 government-backed phishing warnings during Q1 2020, 11,023 in Q2 2020, and 10,136 in Q3 2020.
DECEMBER 25, 2020
The attacks aimed at a Ministry of Health and a pharmaceutical company involved in the development of the COVID-19 vaccine. The systems at the pharmaceutical company were targeted with the BookCode malware, while in the attack against a Ministry of Health the APT group used the wAgent malware.
NOVEMBER 1, 2021
The group focuses on Shipping/Logistics, Manufacturing, Business Services, Pharmaceutical, and Energy entities, among others. The threat actors carried out spear-phishing attacks using spoofed email addresses.
JANUARY 18, 2022
Trend Micro researchers spotted an elusive threat actor, called Earth Lusca, that targets organizations worldwide via spear-phishing and watering hole attacks. .
DECEMBER 10, 2020
Russia-link cyberespionage APT28 leverages COVID-19 as phishing lures to deliver the Go version of their Zebrocy (or Zekapab) malware. “In November, we uncovered COVID-19 phishing lures that were used to deliver the Go version of Zebrocy.
NOVEMBER 4, 2021
The ransomware operators used the Emotet distribution service in 2020 and TA551 in 2020 and 2021 to distribute QakBot via phishing email. CERT-France warns of a new ransomware group named Lockean that is behind a series of attacks against French organizations over the past 2 years.
DECEMBER 5, 2021
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. If you want to also receive for free the newsletter with the international press subscribe here.
OCTOBER 18, 2020
Since August, FIN11 started targeting organizations in many industries, including defense, energy, finance, healthcare, legal, pharmaceutical, telecommunications, technology, and transportation.
NOVEMBER 13, 2020
“The targets include leading pharmaceutical companies and vaccine researchers in Canada, France, India, South Korea and the United States. At least the three nation-state actors have targeted seven COVID-19 vaccine makers, they are Strontium, Lazarus Group, and Cerium, Microsoft warns.
DECEMBER 1, 2020
We recorded 103 cyber security incidents in November, which accounted for 586,771,602 leaked records. The majority of those came from a credential-stuffing attack targeting Spotify and a data leak at the messaging app GO SMS Pro, which you can learn more about below.
DECEMBER 1, 2021
In November, we discovered 81 publicly disclosed cyber security incidents, accounting for 223,615,390 breached records. With one month left in 2021, the annual total running total of compromised records is to just shy of 5 billion.
SEPTEMBER 21, 2020
For example, the pharmaceutical giant AstraZeneca, which is based in Cambridge, was last year imitated in a sophisticated phishing scam targeting job seekers.
The Last Watchdog
FEBRUARY 28, 2021
Cybercriminals often leverage social engineering tactics like phishing and spear-phishing to propagate sophisticated malware. It was undisputedly the fastest spreading, most destructive worm that crippled hospitals, multinational companies and pharmaceutical giants globally by irreversibly encrypting systems’ master boot records. And it all started with a single employee falling prey to a phishing email.
OCTOBER 26, 2021
“They find a way in, whether it’s phishing or something else – but then to find all the valuable assets, they have to use lateral movements in those environments,” Kirner said.
AUGUST 11, 2021
A 2020 report showed how three out of four phishing attempts targeting pharmaceutical employees also delivered malware to victims.
NOVEMBER 23, 2018
The researchers of Yoroi ZLab, on 16 November, accessed to a new APT29’s dangerous malware which seems to be involved in the recent wave of attacks aimed at many important US entities, such as military agencies, law enforcement, defense contractors , media companies and pharmaceutical companies. Threat actors carried out spear phishing attacks impersonating a State Department official to attempt compromising targets.
NOVEMBER 19, 2018
The researchers of Yoroi ZLab, on 16 November, accessed to a new APT29’s dangerous malware which seems to be involved in the recent wave of attacks aimed at many important US entities, such as military agencies, law enforcement, defense contractors , media companies and pharmaceutical companies. The threat actors have spread the malware through spear-phishing messages containing a zip file as an attachment.
MAY 4, 2021
It was another busy month in the cyber security sector, as we discovered 143 incidents that resulted in 1,098,897,134 breached records. Ransomware was again one of the biggest contributors to that total, accounting for almost one in three data breaches.
The Last Watchdog
OCTOBER 8, 2018
And by compromising activities on the IT side, stealing credentials, deploying phishing emails, and infecting websites with drive-by malware, criminals can infiltrate the OT network. Damage to a nation’s critical infrastructure networks, including pharmaceutical companies, logistics firms, food production, energy or petrochemical plants can impose massive environmental, financial and psychological damage. “May you live in interesting times.”
DECEMBER 21, 2018
In July 2018, FireEye observed a series of new attacks of the group leveraging spear-phishing emails using weaponized Word documents that attempt to deliver the UPPERCUT backdoor, also tracked as ANEL. The US Department of Justice charged two Chinese hackers for hacking numerous companies and government agencies in a dozen countries, US Indicts Two Chinese Government Hackers Over Global Hacking Campaign.
SEPTEMBER 1, 2020
There were a massive 99 data breaches and cyber attacks in August, making it the third-biggest monthly total of the year by number of security incidents. But, by contrast, only 36,673,575 records were confirmed to have been leaked, which is the fewest we’ve recorded since May 2018.
JUNE 1, 2021
For the second month in a row, ransomware has dominated our list of data breaches and cyber attacks. Of the 128 publicly disclosed incidents that we discovered in May, more than 40% of them were ransomware attacks.
JANUARY 30, 2020
You can find detailed breakdowns of some of the more notable incidents by subscribing to our Weekly Round-up or by visiting our blog (where we have a dedicated series on phishing scams ). in phishing scam (unknown). Adventist Health notifies patients of phishing incident (2,653).
APRIL 26, 2022
This is ransomware, starting with a phishing attack. Building Automation controllers from you know the leading manufacturers at your hospital than you do in your skyscraper or your pharmaceutical plant. So your pharmaceutical plants have clean rooms.
NOVEMBER 18, 2021
Let's say phishing campaigns like very compelling phishing campaigns, targeted ones. AI is almost good enough at simulating human activity to defeat the biometric systems designed to fight fraud, effectively putting us back at square one.