Explore the latest incidents:

Threat Actor Offers Access to Major Cybersecurity Company Systems

One notable incident involves a threat actor advertising access to what was described as “one of the largest cyber security companies” on a hacker forum. The advertised package included access to logs, credentials, email, and more. Despite initial anonymity, the company was later identified as Zscaler. Zscaler confirmed a breach on a test server but assured no customer data was compromised.

Cyberattack Disrupts Clinical Operations at Ascension

Ascension, a major U.S. healthcare system, recently faced disruptions in its clinical operations due to a cyberattack. With a vast network spanning 140 hospitals across 19 states, Ascension immediately launched an investigation into the unusual network activity. Although some systems were affected, ensuring patient care delivery remained the primary focus, with teams rapidly implementing necessary procedures. Ascension is currently working to identify any compromised data and has requested its business partners to temporarily suspend connections to its systems as a precautionary measure. Stay tuned for updates as the situation unfolds.

French Regional Diagnostic Imaging Company Breached
A diagnostic imaging company based in southern France faces disruptions due to a system breach. Visitors to their website are informed of the incident, with appointment-making services affected. The company is collaborating with cybersecurity experts to investigate the breach. It is unclear if this is a ransomware-related breach or who the perpetrators may be. French organizations in the healthcare sector have suffered several major data breaches in recent times, impacting over 33 million people in France. These incidents underscore the critical need for heightened attention to cybersecurity within the industry.

Revelation of Major Online Fraud Operation: BogusBazaar

Researchers have uncovered alarming details about a major online fraud operation known as BogusBazaar. This operation utilizes a vast network of fake online shops, selling items like shoes and clothing, often imitating renowned or luxury brands. Over the past three years, the individuals behind the operation have managed an extensive network spanning more than 75,000 domains, with over 22,000 still active.

BogusBazaar relies on WordPress and WooCommerce plugins to power its fraudulent activities, luring unsuspecting shoppers into making purchases and unknowingly sharing their payment card details. Notably, the scammers have implemented a resilient system, separating payment pages from the main storefronts, making it easy to transition between them if compromised.

These fraudulent sites are operated by numerous third-party affiliates, leasing software and hosting services from the BogusBazaar team. Up to 850,000 people are reported to have fallen victim to these scam sites, resulting in transactions totaling approximately $50 million. The affiliates, predominantly from China, target victims primarily in the U.S. and the UK, underscoring the widespread impact of such fraudulent activities.

Stay vigilant and informed, follow our updates to protect against evolving cyber threats.