Pharmaceutical companies exploited by phishing scam targeting job seekers

IT Governance

Earlier this month, two major pharmaceutical giants issued warnings about phishing emails targeting job hunters. For example, most ransomware attacks are spread via phishing emails. Organisations can tackle that threat with our Phishing and Ransomware – Human patch e-learning course. This ten-minute course explains the basics of email-based threats, showing staff how to spot and avoid phishing scams and ransomware.

Europe’s Largest Private Hospital Operator Fresenius Hit by Ransomware

Krebs on Security

Fresenius , Europe’s largest private hospital operator and a major provider of dialysis products and services that are in such high demand thanks to the COVID-19 pandemic, has been hit in a ransomware cyber attack on its technology systems. In April, the international police organization INTERPOL warned it “has detected a significant increase in the number of attempted ransomware attacks against key organizations and infrastructure engaged in the virus response.

Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

FIN11 gang started deploying ransomware to monetize its operations

Security Affairs

The financially-motivated hacker group FIN11 has started spreading ransomware to monetize its cyber criminal activities. The financially-motivated hacker group FIN11 has switched tactics starting using ransomware as the main monetization method.

The hidden threats facing your intellectual property

IT Governance

For life sciences and pharmaceutical companies, this includes data on the development and testing of new therapies and details of how therapies are manufactured. In the 2017 WannaCry attack, for example, cyber criminals used ransomware to prevent victims from accessing their IP unless a ransom was paid. Cyber Resilience Healthcare Intellectual Property Life Sciences Pharmaceutical

Interpol warns that crooks are increasingly targeting hospitals

Security Affairs

While the Coronavirus outbreak is threatening the world, the INTERPOL warns that crooks are increasingly targeting hospitals with ransomware. The INTERPOL (International Criminal Police Organisation) is warning of ransomware attacks against hospitals despite the currently ongoing Coronavirus outbreak. Some Ransomware operators have stated that they will no longer target health and medical organizations during the Coronavirus (COVID-19) pandemic.

List of data breaches and cyber attacks in November 2020 – 586 million records breached

IT Governance

Ransomware. Ransomware. We recorded 103 cyber security incidents in November, which accounted for 586,771,602 leaked records.

North Korea-linked Lazarus APT targets the COVID-19 research

Security Affairs

The group is considered responsible for the massive WannaCry ransomware attack, a string of SWIFT attacks in 2016, and the Sony Pictures hack. The attacks aimed at a Ministry of Health and a pharmaceutical company involved in the development of the COVID-19 vaccine.

List of data breaches and cyber attacks in August 2020 – 36.6 million records breached

IT Governance

Ransomware. British Dental Association records leaked on the dark web (5,524) Australian aged care firm Regis hit by ransomware (unknown) ?Canon

List of data breaches and cyber attacks in October 2020 – 18.4 million records breached

IT Governance

Ransomware. Ransomware. With 117 publicly reported security incidents, October 2020 is the leakiest month we’ve ever recorded. The good news is that those data breaches and cyber attacks accounted for just 18,407,479 breached records.

Security Affairs newsletter Round 292

Security Affairs

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box.

NEW TECH: How Semperis came to close a huge gap in Active Directory disaster preparedness

The Last Watchdog

But then came a wave of ransomware attacks like WannaCry and cyber weapons like NotPetya, the ransomware spreading worm that encrypted AD, locking out company control — permanently, without a distinction as to whether its extortion demands went unmet or not. The ransomware will often use the EternalBlue and EternalRomance exploits to propagate. In today’s complex IT environments, a million things can go wrong, though only a few systems touch everything.

New financially motivated attacks in Western Europe traced to Russian-speaking threat actors

Security Affairs

At least two companies operating in pharmaceutical and manufacturing sectors have been affected. If the latter are the ones to blame, this marks the first time the gang has launched the attacks against pharmaceutical and manufacturing companies and may indicate a significant shift in their modus operandi. . Researchers at Group-IB observed new financially motivated attacks in Western Europe traced to Russian-speaking threat actors.

Europol analyses on criminal operations in Europe during COVID-19 Crisis

Security Affairs

“For instance, the cybercriminals shortened the period between the initial infection with ransomware and the activation of the ransomware attack not waiting for an ideal moment to launch the attack but trying as soon as possible to maximise profits.” Europol continues to observe on a daily base the trading of counterfeit pharmaceutical and healthcare products.

Encryption – A Feasible Savior against Prevalent Privacy Issues in Business Communication

Security Affairs

I remember that in early 2017, the business world was hit by ransomware, which felt to them like a speedy bullet shot at their blind spot. The ransomware attack was labeled as WannaCry, which in reality made the victims wanted to cry. What’s more, threatening about ransomware is that according to a survey conducted by Pwnie Express , almost half of the 582 surveyed individuals agreed that they didn’t have any means to prevent a ransomware attack.

China-linked hackers target government agencies by exploiting flaws in Citrix, Pulse, and F5 systems, and MS Exchange

Security Affairs

This tool is commonly used by threat actors, including ransomware operations, utilize to gain access to administrator credentials, and therefore, compromise Windows domain controllers.

Supply chain failure – the impact on the patient

IT Governance

This concern was highlighted by recent reports indicating that pharmaceutical giant Sanofi is increasing the stockpile of medicine to allow for 14 weeks’ worth of supply should there be cross-channel transport delays. The WannaCry ransomware attack is a prime example, where the inability to access data saw 14,778 patient appointments and 850 operations cancelled across the NHS.

Data breaches: the financial cost of poor planning

IT Governance

This reflects recent figures , suggesting that NotPetya, a 2017 ransomware attack that hit organisations across the globe, cost pharmaceutical giant Merck $135 million in lost sales in the first three months after the attack. Data breaches can have a wide-reaching impact.

List of data breaches and cyber attacks in January 2020 – 1.5 billion records breached

IT Governance

Ransomware. Travelex suspends services after ransomware attack (unknown). Bartlett Public Library District, IL, computers disabled by ransomware (unknown). Anchorage-based bty Dental notifies patients after ransomware attack (2,008). Dawson’s Creek, British Columbia, hit by ransomware (unknown). California’s Panama-Vista School District says ransomware will delay report cards (15,985). New Jersey synagogue hit by Sodinokibi ransomware (unknown).

Security in a World of Physically Capable Computers

Schneier on Security

We've already seen hacks against robot vacuum cleaners , ransomware that shut down hospitals and denied care to patients, and malware that shut down cars and power plants. Cars, airplanes, pharmaceuticals, consumer goods, food, medical devices, workplaces, restaurants, and, most recently, financial products -- all needed government regulation in order to become safe and secure. It's no secret that computers are insecure.

2019 end-of-year review part 1: January to June

IT Governance

Many commenters were disappointed by the car manufacturer’s lack of transparency, as it refused to provide further details of the incident, including whether it was a ransomware attack. On the one hand, the 2019 SonicWall Threat Report found that the UK was one of the few countries that saw a year-on-year reduction in ransomware attacks. GlaxoSmithKline and AstraZeneca warned job hunters about recruitment scams that imitated the pharmaceutical giants.