InfoSecBulletin Cybersecurity for mankind
LockBit strikes once more! Two non-profit hospitals in New York have been targeted by a ransomware group, plunging them into a difficult struggle for recovery. The Scattered Spider threat group targeted yet another casino and hotel chain, unleashing a devastating ransomware attack. Caesars Entertainment’s loyalty program database was breached by the attackers. The consequences of previous data breaches have a way of haunting us in the present. Last year’s breach has led to a similar situation for LastPass users. Here are the top 10 highlights from the past 24 hours.
- In a recent cyberattack, the notorious LockBit ransomware group successfully infiltrated two prominent hospitals in New York: the Carthage Area Hospital and Claxton-Hepburn Medical Center. The aftermath of this malicious breach has gravely disrupted their crucial services, compelling them to divert patients and reschedule vital appointments.
ALSO READ:
Hackers Bypass Gmail MFA With App-Specific Password Reuse
By infosecbulletin
/ Monday , June 23 2025
A hacking group reportedly linked to Russian government has been discovered using a new phishing method that bypasses two-factor authentication...
Read More
Russia detects first SuperCard malware attacks via NFC
By infosecbulletin
/ Wednesday , June 18 2025
Russian cybersecurity experts discovered the first local data theft attacks using a modified version of legitimate near field communication (NFC)...
Read More
Income Property Investments exposes 170,000+ Individuals record
By infosecbulletin
/ Tuesday , June 17 2025
Cybersecurity researcher Jeremiah Fowler discovered an unsecured database with 170,360 records belonging to a real estate company. It contained personal...
Read More
ALERT (CVE: 2023-28771)
Zyxel Firewalls Under Attack via CVE-2023-28771 by 244 IPs
By infosecbulletin
/ Tuesday , June 17 2025
GreyNoise found attempts to exploit CVE-2023-28771, a vulnerability in Zyxel's IKE affecting UDP port 500. The attack centers around CVE-2023-28771,...
Read More
CISA Flags Active Exploits in Apple iOS and TP-Link Routers
By infosecbulletin
/ Tuesday , June 17 2025
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has recently included two high-risk vulnerabilities in its Known Exploited Vulnerabilities (KEV)...
Read More
10K Records Allegedly from Mac Cloud Provider’s Customers Leaked Online
By infosecbulletin
/ Monday , June 16 2025
SafetyDetectives’ Cybersecurity Team discovered a public post on a clear web forum in which a threat actor claimed to have...
Read More
Canada 2nd largest airlines “WestJet” investigates cyberattack disrupting internal systems
By infosecbulletin
/ Sunday , June 15 2025
WestJet, Canada's second-largest airline, is looking into a cyberattack that has affected some internal systems during its response to the...
Read More
Paraguay 7.4 Million Citizen Records Leaked on Dark Web
By infosecbulletin
/ Saturday , June 14 2025
Resecurity found 7.4 million records of Paraguayan citizens' personal information leaked on the dark web today. Last week, cybercriminals attempted...
Read More
High-Severity Flaw in HashiCorp Nomad Allows Privilege Escalation
By infosecbulletin
/ Friday , June 13 2025
HashiCorp has revealed a critical vulnerability in its Nomad tool that may let attackers gain higher privileges by misusing the...
Read More
SoftBank: Over 137,000 personal info leaked
By infosecbulletin
/ Friday , June 13 2025
SoftBank has disclosed that personal information of more than 137,000 mobile subscribers—covering names, addresses, and phone numbers—might have been leaked...
Read More
- According to Trend Micro, the threat groups responsible for RedLine and Vidar have been employing identical techniques to propagate both ransomware and info-stealers. The attackers are using Extended Validation (EV) code signing certificates to sign the malware.
- LastPass users are in danger of falling victim to a highly persuasive phishing email, which resembles the aftermath of last year’s security breach. The email asks users to verify their personal data or risk losing access to certain features.
- The personal information of thousands of officers from Greater Manchester Police in the U.K. has been compromised due to a ransomware attack on a third-party supplier. Although sensitive details such as financial information and home addresses remained untouched, there is a possibility that the personal information of undercover officers was compromised.
