US federal agencies hacked using legitimate remote desktop tools

US federal agencies hacked using legitimate remote desktop tools

The U.S. government’s cybersecurity agency has warned that criminal financially motivated hackers compromised federal agencies using legitimate remote desktop software. CISA said in a joint advisory with the National Security Agency on Wednesday that it had identified a “widespread cyber campaign involving the malicious use of legitimate remote monitoring and management (RMM) software” that had […]

Read more
Ransomware is a global problem that needs a global solution

FBI, CISA say Cuba ransomware gang extorted $60M from victims this year

The Cuba ransomware gang extorted more than $60 million in ransom payments from victims between December 2021 and August 2022, a joint advisory from CISA and the FBI has warned. The latest advisory is a follow-up to a flash alert released by the FBI in December 2021, which revealed that the gang had earned close […]

Read more
Iran-backed hackers breached a US federal agency that failed to patch year-old bug

Iran-backed hackers breached a US federal agency that failed to patch year-old bug

The U.S. government’s cybersecurity agency says hackers backed by the Iranian government compromised a federal agency that failed to patch against Log4Shell, a vulnerability fixed almost a year ago. In an alert published Thursday, the Cybersecurity and Infrastructure Security Agency said that a federal civilian executive branch organization (FCEB) was breached by Iranian government hackers […]

Read more
Everything we know so far about the ransomware attack on Los Angeles schools

Everything we know so far about the ransomware attack on Los Angeles schools

Los Angeles Unified School District, or LAUSD — the second largest district in the U.S. with more than 1,000 schools and 6,000 students — confirmed this week that it was hit by a cyberattack over the weekend, disrupting access to its IT systems. Details about the incident, described as “criminal in nature” and later confirmed […]

Read more
US government says North Korean hackers are targeting American healthcare organizations with ransomware

US government says North Korean hackers are targeting American healthcare organizations with ransomware

The FBI, CISA and the U.S. Treasury Department are warning that North Korean state-sponsored hackers are using ransomware to target healthcare and public health sector organizations across the United States. In a joint advisory published Wednesday, the U.S. government agencies said they had observed North Korean-backed hackers deploying Maui ransomware since at least May 2021 […]

Read more