The Chinese APT group BlackTech was exposed for infiltrating U.S. and Japanese corporate networks through network edge devices and firmware hacks, per an advisory by NSA, FBI, CISA, and Japan’s NISC. BlackTech stealthily altered router firmware, targeting subsidiaries and headquarters. This group, active since 2010, focuses on government, industrial, and tech sectors. They’ve compromised Cisco routers using customized firmware backdoors, established SSH backdoors, and evaded firmware signatures. Recommendations include monitoring connections, log analysis, secure boot-capable devices, and firmware updates.
Sleep study patients’ personal data accessed in ransomware attack, SA Health says
Over 2,000 patient files from Adelaide’s Women’s and Children’s Hospital were accessed during a ransomware attack targeting third-party company Compumedics. The company, which supplies sleep
