A relatively new ransomware group calling themself “Gunra” has shown it has no compunction about attacking hospitals. They have reportedly locked — and have started leaking information from — the American Hospital in Dubai (AHD). In its first listing concerning this attack, Gunra claimed to have exfiltrated the entire Cerner Millenium database (now known as...Read More
Groups linked with the Play ransomware have exploited more than 900 organizations, the FBI said Wednesday, and have developed a number of new techniques in their double-extortion campaigns – including exploiting a security flaw in remote-access tool SimpleHelp if orgs haven’t patched it. This particular ransomware variant was among the top five targeting critical infrastructure...Read More
FBI’s huge Qakbot bust only paused the malware’s reign; it returned stronger and stealthier Qakbot’s new spam bomb attacks trick employees into unleashing ransomware inside their own companies Despite billions seized, the Qakbot mastermind remains free in Russia, far from US law enforcement In a major cybercrime crackdown, the FBI and international partners declared victory...Read More
While healthcare organizations often know in general what they need to do in case they’re faced with a ransomware attack, the devil is in the details of how comprehensive and well-rehearsed that incident preparedness plan is for optimal response, said Rick Doten, vice president and health plan CISO at Centene Corp. Those details include the...Read More
In an update to a joint advisory with CISA and the Australian Cyber Security Centre, the FBI said that the Play ransomware gang had breached roughly 900 organizations as of May 2025, three times the number of victims reported in October 2023. “Since June 2022, the Play (also known as Playcrypt) ransomware group has impacted...Read More
A ransomware gang claimed responsibility for the hack on Kettering Health, a network of hospitals, clinics, and medical centers in Ohio. The healthcare system is still recovering two weeks after the ransomware attack forced it to shut down all its computer systems. Interlock, a relatively new ransomware group that has targeted healthcare organizations in the...Read More
Lee Enterprises (LEE, Financial) has disclosed a significant data breach incident where cyber attackers obtained documents with sensitive personal information. The breach, occurring in February, compromised the data of 39,779 people, as outlined in a filing with the Attorney General’s Office in Maine. The investigation by Lee Enterprises revealed that unauthorized access and potential acquisition...Read More
Nearly 40,000 people had their Social Security numbers exposed during a cyberattack in February on Lee Enterprises, one of the largest owners of local newspapers in the U.S. The company notified regulators in Maine of the incident on Wednesday, telling them that it discovered the leak of sensitive information on May 28. Lee Enterprises spent...Read More
Cybersecurity is undergoing a seismic shift. As I discussed in January, and as highlighted in this MSSP Alert article, the rise of AI-driven threats has made Anti-Ransomware through Preemptive Cyber Defense an absolute necessity rather than an option. Traditional detect-and-respond strategies are no longer sufficient to counter the speed and sophistication of adversaries exploiting AI...Read More