With cyber threats constantly on the rise, staying informed about the latest news and developments in the field is essential for maintaining digital safety. Because of this, cybersecurity remains a critical concern for organisations, governments, and individuals. In this blog post, we will explore the top cybersecurity news stories from this week, shedding light on significant events, and noteworthy security incidents.
In this week’s news, LockBit returns with new encryptors, pharmacies across the US are reporting a delay in services after a major cyberattack, and an Ivanti VPN flaw is being exploited by Chinese hackers.
Epic Games Allegedly Hacked by Ransomware Gang
A ransomware group operating under the name Mogilevich has claimed responsibility for breaching Epic Games' servers, reportedly obtaining a substantial cache of confidential information.
The Russian-linked entity claims to have extracted 189 gigabytes of sensitive data, encompassing email logins, passwords, financial particulars, and proprietary source code. As reported by Cyber Daily, the hackers are actively promoting the illicitly acquired data on a darknet marketplace, stipulating a deadline of March 4th for interested parties to procure the data.
Epic Games has so far denied the claims, citing a lack of evidence.
LockBit Ransomware Returns to Attacks with New Encryptors, Servers
LockBit ransomware group has resumed its criminal cyber operations, just a week after being disrupted by law enforcement in a joint takedown between the NCA, FBI and Europol. The group have begun deploying upgraded encryptors and redirecting ransom notes to new servers in response to the disruption.
Chinese Hackers Exploiting Ivanti VPN Flaws to Deploy New Malware
UNC5325 utilised the CVE-2024-21893 vulnerability to deploy a variety of new malware, including LITTLELAMB.WOOLTEA, PITSTOP, PITDOG, PITJET, and PITHOOK. This cluster also attempted to establish persistent access to compromised appliances.
Researchers have suggested with moderate confidence that there are links between UNC5325 to UNC3886. This connection is based on source code overlaps observed in LITTLELAMB.WOOLTEA and PITHOOK, aligning with malware previously employed by UNC3886.
Scanning, detecting, and remediating vulnerabilities is paramount for security protection. Attack surface management tools can help you do this efficiently and easily.
Tens of Thousands of Pharmacies Across the US Unable to Get Prescriptions to Patients After Major Cyberattack
A major cyberattack on the largest health insurer in the United States, UnitedHealth, has disrupted pharmacy operations nationwide, rendering tens of thousands of pharmacies unable to fill prescriptions. UnitedHealth suspects that the hack may be a state-sponsored attack. The cyber incident commenced on Wednesday, leading to the prevention of numerous pharmacies from processing prescriptions for insurance companies. The extent of the impact on patients remains unclear, but UnitedHealth serves approximately 7.7 million customers across the country.
Retailer Pepco Loses About 15m Euros in Hungarian Phishing Attack
Discount retailer Pepco Group in Europe has revealed that its Hungarian business fell victim to a phishing attack, leading to approximately 15 million euros ($16.3 million) in losses, as disclosed on Tuesday. The company stated that it is currently uncertain whether the funds can be recuperated, but Pepco is actively engaging with banking partners and law enforcement in pursuit of recovery.
Importantly, at this point, the incident does not seem to have compromised any customer, supplier, or staff information or data, according to Pepco Group.
Saying well-informed about the latest advancements in the industry remains incredibly important in the fight against cybercrime. By staying up to date with relevant news, leaders can make informed decisions, proactively implement security measures, and effectively shield their organisations from cyberattacks. Maintaining a vigilant mindset, embracing best practices, and leveraging cutting-edge technologies are all crucial components in building a secure digital future.