Cybersecurity Update March 20th 2023: Latest Breaches, Ransomware Attacks, and Arrests

As the world becomes increasingly reliant on digital infrastructure, cybercriminals are finding new ways to exploit vulnerabilities and gain unauthorized access to sensitive data. In todays update, we will cover the latest breaches, ransomware attacks, and arrests so lets jump in.

FBI Apprehends ‘Pompompurin’, The Brains Behind BreachForums Operation

Conor Brian Fitzpatrick, resident of Peekskill, who confessed to being “pompompurin,” the owner of BreachForums, was arrested by FBI agents on March 15, 2023. Fitzpatrick had been an active member of RaidForums, a forum to facilitate the sale of stolen data. BreachForums is a spin-off of RaidForums that was disrupted in February 2022 by law enforcement.

Netherlands-based Royal Dirkzwager Acknowledges Play Ransomware Attack on Systems

The Royal Dirkzwager, a Dutch maritime logistics company, was hit with ransomware from the Play group, the latest in a string of attacks targeting the shipping industry. The company’s systems were not affected, but the ransomware attack involved the theft of data from servers that held a range of contracts and personal information.

Cancer Patient Takes Legal Action Against Healthcare Provider After Hackers Publish Private Pics

The Lehigh Valley Health Network suffered a ransomware attack on Feb. 6, resulting in the posting of nude photos of a cancer patient along with her health records. The patient has since filed a lawsuit seeking class action status for all parties whose data was exposed and monetary damages to be determined later.

Emotet Malware Spreads Through Microsoft OneNote Files, Evading Security Measures

Emotet malware is now being distributed using Microsoft OneNote email attachments, aiming to bypass Microsoft security restrictions and infect more targets. The malware is hidden underneath the “View” button in reply-chain emails that impersonate guides, how-tos, invoices, job references, and more. The threat actors have hidden a malicious VBScript file called ‘click.wsf’ underneath the “View” button.

Suit Launched Against MKS Instruments in Wake of Ransomware Attack

MKS Instruments, a semiconductor chipmaker, was hit with a ransomware attack in February, which impacted business systems and disrupted the company’s ability to process orders and provide other services. A former employee is now leading a class action lawsuit against the company, claiming its negligent cybersecurity led to the unauthorized breach of personal identifying information.

Kaspersky Unveils Updated Conti Decryption Tool for Combating Cybercrime

Kaspersky has published a new version of a decryption tool for the Conti ransomware based on previously leaked source code. The researchers added all 258 keys to the latest build of Kaspersky’s utility RakhniDecryptor 1.40.0.00. Users can download the decryptor from the Kaspersky’s “No Ransom” site.

NBA Cautions Fans About Data Leak Following Cyberattack on External Newsletter Platform/h3>

The National Basketball Association (NBA) has launched an investigation into a data breach that affected an unknown number of individuals. While the NBA’s systems were not impacted, an unauthorized third party accessed and created copies of names and email addresses of some of its fans. The breach did not compromise usernames, passwords, and other information. These recent incidents highlight the continued need for strong cybersecurity measures to protect sensitive data from cybercriminals. Businesses must remain vigilant and keep their systems up-to-date with the latest security patches and protocols. Individuals must also be careful with their personal information and only share it with trusted sources. The fight against cybercrime is ongoing, and we must all do our part to stay safe in the digital age. That wraps up todays update and as always stay safe, stay vigilant and we’ll see you tomorrow with another update!