Researchers at Forescout have identified a new ransomware group, Mora_001, that has been active since January 2022. It has used two Fortinet vulnerabilities to develop and deploy its individual ransomware, ‘SuperBlack’, allegedly based on the leaked LockBit 3.0 ransomware. Mora_001’s use of similar post-exploitation patterns and communication channels to LockBit hints at a potential connection between the two groups.
Thousands of healthcare records exposed online, including private patient information
An exposed database reportedly belonging to ESHYFT, a US tech platform for nurses, has been secured following the discovery by a cybersecurity researcher. Jeremiah Fowler
