As per the reports, on July 1, 2022, more than 650 healthcare providers worldwide received data breach notification letters from Professional Finance Company (PFC USA), a northern Colorado-based firm, and believes that the information might have been compromised during a February 2022 ransomware attack. PFC is active in debt recovery over the country and working with various organizations of finance, healthcare, government sectors and retail, and believes that the information might have been compromised during a February 2022 ransomware attack. Since the attackers were able to access and disable company’s computers, PFC notified the probably impacted healthcare providers on May 5, 2022. The likely stolen data may include names, addresses, date of birth, accounts receivable balance, payments information, social security numbers, health insurance and medical treatment information. Furthermore, the accounts receivable management firm PFC did not disclose the exact number of victims in the reported data breach incident, but it opted to share a list of 657 impacted healthcare providers. Although Professional Finance Company Inc. (PFC) did not reveal much information on the data breach, AdvIntel CEO Vitali Kremez stated that their Andariel platform detected the PFC attack on February 23, 2022, through signal collections with early warning details after the attack flow from the Cobalt Strike infrastructure and linked the attack to Quantum ransomware gang which move laterally using Cobalt Strike and exfiltrate data through command-line tools. Quantum ransomware is reported to be a rebrand of the MountLocker group which started its ransomware operation in September 2020. Since then, the ransomware gang has rebranded multiple times using various other names including AstroLocker, XingLocker, and Quantum, and also they began encrypting the infected system files with .quantum extension from August 2021.
A significant data breach has affected an unknown number of serving UK military personnel, according to reports from the BBC. The breach targeted a payroll system used by the Minis...
A new malware targeting both Intel and ARM-based Mac computers has been discovered by cybersecurity firm Kandji. Dubbed "Cuckoo," the malware disguises itself as legitimate...
Google Cloud’s Mandiant reported that the Iranian state-sponsored cyberespionage group APT42 has deployed two new backdoors in recent attacks against NGOs, government bodies, and...