Hey there, FixMeFans and StartMeStars! We’re back with another edition of our weekly roundup where we deliver the most recent comings and goings of the cybersecurity world. We just passed Halloween and our on way into November – let’s hope this month brings us less spooky cyberthreats than the last!
This week we’re coming at you with news about ransomware in the healthcare industry, how a Russian national has been sentenced to prison for his role in a cybercrime scheme, and how Iranian hackers have been stealing voter information.
This past week, the US CISA (Cybersecurity and Infrastructure Security Agency) issued an alert under the name AA20-302A. This report, which came as a joint alert from the CISA, FBI, and HHS (US Department of Health and Human Services) concerns increased ransomware activity targeting the healthcare and public health sector.
According to the AA20-302A report, cybersecurity experts have noticed a significant increase in cyberattacks on healthcare industries, as well information which signifies more attacks on the horizon.
Their advice? First off, don’t pay the ransoms, as there’s no guarantee that the locked files will be recovered. Second, regularly back up your data, and make sure that the back up data is password protected.
Curious? You can read up on the situation here!
This past Monday, the United States announced the sentencing of Aleksandr Brovko, a Russian cybercriminal responsible for bank fraud and wire fraud, as well as stealing numerous financial credentials.
According to reports, Brovko collaborated with other criminals through Russian-speaking forums where they would trade tools and services necessary for cyberattacks. Through this, Brovko was able to use botnets and scripts to search the internet for vulnerable financial information.
At the end of the day, Brovko’s actions resulted in the intended loss of over $100 million – luckily, Brovko has since been sentenced to 8 years behind bars, so there’s one less hacker you need to worry about.
You can read more about the sentencing here!
With Election Day upon us, it seems like we’re never really in the clear when it comes to cybersecurity. According to CISA and the FBI, an Iranian state-sponsored hacking group was able to gather voter registration info from U.S. state websites.
The data gathered from these websites was then used to send fake Proud Boy intimidation emails to Democrats in an attempt to convince them to vote for President Trump.
In order to gather the data, the Iranian hackers had first used vulnerability scanners to detect security flaws in the targeted sites. Once they were able to discern the vulnerabilities, the hackers successfully downloaded voter information.
That’s all for this week’s roundup folks! We hope you’re staying safe with all that’s going on, especially when it comes to your cybersecurity!