For at least eight months, cybercriminals have been distributing trojanized versions of KeePass, a password manager, to install Cobalt Strike beacons, steal credentials, and deploy ransomware on breached networks. The campaign was identified by WithSecure’s Threat Intelligence team, and they discovered that the adversaries had manipulated the open-source code of KeePass to create a version named KeeLoader, which includes a Cobalt Strike beacon and exports the password database. The Cobalt Strike watermarks used in this campaign have been linked to previous Black Basta ransomware attacks.
Kettering Health hit by cybersecurity attack
Kettering Health, a Dayton-based hospital group, underwent a system-wide outage due to a cyberattack, affecting its patient care systems. This potentially led to unauthorized access
